General
-
Target
c2b0cf91f2cf77d39f066effb0ea9c9d14c75fd9d5939b171e133998d076d2e8
-
Size
417KB
-
Sample
211018-atrnnsdghp
-
MD5
aab145778ac89cd54628b0c75888a170
-
SHA1
e01ed9a5c3343b5d8e612061ecfdd72d04d99b24
-
SHA256
c2b0cf91f2cf77d39f066effb0ea9c9d14c75fd9d5939b171e133998d076d2e8
-
SHA512
83c3cea43fcff3d6ebe9ca0bb3dc948d21a379c1094f6723cfbffddc342f993699e8066f1a6ca29213e406d44aee80295ae4805e8d5b5944f3172e3eea7175a1
Static task
static1
Malware Config
Extracted
redline
sewPalp
185.215.113.29:24645
Targets
-
-
Target
c2b0cf91f2cf77d39f066effb0ea9c9d14c75fd9d5939b171e133998d076d2e8
-
Size
417KB
-
MD5
aab145778ac89cd54628b0c75888a170
-
SHA1
e01ed9a5c3343b5d8e612061ecfdd72d04d99b24
-
SHA256
c2b0cf91f2cf77d39f066effb0ea9c9d14c75fd9d5939b171e133998d076d2e8
-
SHA512
83c3cea43fcff3d6ebe9ca0bb3dc948d21a379c1094f6723cfbffddc342f993699e8066f1a6ca29213e406d44aee80295ae4805e8d5b5944f3172e3eea7175a1
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-