General
-
Target
d2c84a5563724df60cb403cf76e139c93acf15ebbe72bd90e6327af37af73d04
-
Size
406KB
-
Sample
211023-qpwd3acda3
-
MD5
17886f624534498f44a54e6840a68f38
-
SHA1
2b852d9adaa6c6d7098753192e920a2230576d47
-
SHA256
d2c84a5563724df60cb403cf76e139c93acf15ebbe72bd90e6327af37af73d04
-
SHA512
b08ac5e50c73ad55ed5b9c673811fe53c869a0e09c8d45452c3b7f5d4a20279cbc34a8d767b946533d75764f758c6928ba69d124164dbff1c858cf950a80c61c
Static task
static1
Behavioral task
behavioral1
Sample
d2c84a5563724df60cb403cf76e139c93acf15ebbe72bd90e6327af37af73d04.exe
Resource
win10-en-20210920
Malware Config
Targets
-
-
Target
d2c84a5563724df60cb403cf76e139c93acf15ebbe72bd90e6327af37af73d04
-
Size
406KB
-
MD5
17886f624534498f44a54e6840a68f38
-
SHA1
2b852d9adaa6c6d7098753192e920a2230576d47
-
SHA256
d2c84a5563724df60cb403cf76e139c93acf15ebbe72bd90e6327af37af73d04
-
SHA512
b08ac5e50c73ad55ed5b9c673811fe53c869a0e09c8d45452c3b7f5d4a20279cbc34a8d767b946533d75764f758c6928ba69d124164dbff1c858cf950a80c61c
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-