General
-
Target
cec8520f145a0dddbf1adbe4262e8b83.exe
-
Size
441KB
-
Sample
211023-g8bz4adbap
-
MD5
cec8520f145a0dddbf1adbe4262e8b83
-
SHA1
c88557afeb6db504b5e94838411d289714e8c193
-
SHA256
75c1729f921ec241025388f991a462400494b804483f0392f0222fe3ed04ceb9
-
SHA512
e5a8fa627bd944dadcee18d6b10cbc55df546083b167b11ffd5fe4d74fdf9fe67d3c630978dafb7fc2389db1ea9af0333f2ce97a886fb79d8747699985791867
Malware Config
Targets
-
-
Target
cec8520f145a0dddbf1adbe4262e8b83.exe
-
Size
441KB
-
MD5
cec8520f145a0dddbf1adbe4262e8b83
-
SHA1
c88557afeb6db504b5e94838411d289714e8c193
-
SHA256
75c1729f921ec241025388f991a462400494b804483f0392f0222fe3ed04ceb9
-
SHA512
e5a8fa627bd944dadcee18d6b10cbc55df546083b167b11ffd5fe4d74fdf9fe67d3c630978dafb7fc2389db1ea9af0333f2ce97a886fb79d8747699985791867
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-