General
-
Target
d5791cbfd10ab6583a69c8e56e0ac8316fbbed392882eafa311fb690722f8090
-
Size
442KB
-
Sample
211023-g9tarscbd3
-
MD5
63886742d4df575867a893564fbccf70
-
SHA1
99e061a1571bd23cdd7033dfb5ecde0fbb32751b
-
SHA256
d5791cbfd10ab6583a69c8e56e0ac8316fbbed392882eafa311fb690722f8090
-
SHA512
c27b770bd291cb17151cc28f830d1e8d8600064500fa42c8c4136d5fa1c41b076c3ecfe32164030b29dc5f2ba5d52b94ca52e0c65d29baba91de3be7caa2b057
Static task
static1
Behavioral task
behavioral1
Sample
d5791cbfd10ab6583a69c8e56e0ac8316fbbed392882eafa311fb690722f8090.exe
Resource
win10-en-20210920
Malware Config
Targets
-
-
Target
d5791cbfd10ab6583a69c8e56e0ac8316fbbed392882eafa311fb690722f8090
-
Size
442KB
-
MD5
63886742d4df575867a893564fbccf70
-
SHA1
99e061a1571bd23cdd7033dfb5ecde0fbb32751b
-
SHA256
d5791cbfd10ab6583a69c8e56e0ac8316fbbed392882eafa311fb690722f8090
-
SHA512
c27b770bd291cb17151cc28f830d1e8d8600064500fa42c8c4136d5fa1c41b076c3ecfe32164030b29dc5f2ba5d52b94ca52e0c65d29baba91de3be7caa2b057
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-