General
-
Target
c2bf8a3efc17eb9bae055d508b685531b5d1d238b63b3dabc8a0232e66ca3752
-
Size
452KB
-
Sample
211022-sdctpacffr
-
MD5
2fdaea5b921688250caf3478a6458e8e
-
SHA1
e440899da5e2cbffb777cc4d6a386dd2de81c2cd
-
SHA256
c2bf8a3efc17eb9bae055d508b685531b5d1d238b63b3dabc8a0232e66ca3752
-
SHA512
e408a78c27507f08ba6931d664af600d6a9e2c4a5e6604221613278b7f21adfaa6a316bf5626a96c971c320fecd5c2b2c71cf0bfee139a82cae6e2bd442d0e4f
Static task
static1
Behavioral task
behavioral1
Sample
c2bf8a3efc17eb9bae055d508b685531b5d1d238b63b3dabc8a0232e66ca3752.exe
Resource
win10-en-20210920
Malware Config
Targets
-
-
Target
c2bf8a3efc17eb9bae055d508b685531b5d1d238b63b3dabc8a0232e66ca3752
-
Size
452KB
-
MD5
2fdaea5b921688250caf3478a6458e8e
-
SHA1
e440899da5e2cbffb777cc4d6a386dd2de81c2cd
-
SHA256
c2bf8a3efc17eb9bae055d508b685531b5d1d238b63b3dabc8a0232e66ca3752
-
SHA512
e408a78c27507f08ba6931d664af600d6a9e2c4a5e6604221613278b7f21adfaa6a316bf5626a96c971c320fecd5c2b2c71cf0bfee139a82cae6e2bd442d0e4f
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-