General
-
Target
a91bc84dd26784dc82b1ee55b50dc3016738a09fa0f6c.exe
-
Size
715KB
-
Sample
211024-hjmwqsddb4
-
MD5
3c0b19faee31188388d29d5e467437ea
-
SHA1
1b9fb053ccfdb4a06ee05c5992d9541f344cc157
-
SHA256
a91bc84dd26784dc82b1ee55b50dc3016738a09fa0f6cdd22ad053bc00dfa016
-
SHA512
cf1b0c6bd312b468fdcd51f3b2821d9986a104777fc0c7b7497e50d599dccfe5bf0748a6108085c7bf7c71b9b19f0362f928d220d8e4611af025efaf5c5ad7bf
Malware Config
Targets
-
-
Target
a91bc84dd26784dc82b1ee55b50dc3016738a09fa0f6c.exe
-
Size
715KB
-
MD5
3c0b19faee31188388d29d5e467437ea
-
SHA1
1b9fb053ccfdb4a06ee05c5992d9541f344cc157
-
SHA256
a91bc84dd26784dc82b1ee55b50dc3016738a09fa0f6cdd22ad053bc00dfa016
-
SHA512
cf1b0c6bd312b468fdcd51f3b2821d9986a104777fc0c7b7497e50d599dccfe5bf0748a6108085c7bf7c71b9b19f0362f928d220d8e4611af025efaf5c5ad7bf
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-