General
-
Target
90fed56bb0612c4ee99c0c312856f36c.exe
-
Size
252KB
-
Sample
211102-r2pmqahhbn
-
MD5
90fed56bb0612c4ee99c0c312856f36c
-
SHA1
328f530b6541b53bc6b8da728a57993f5c97175a
-
SHA256
d4e4269b47b81a4a2d0760e76499c97f47d2d40051b3dd3c0f2993b79836bb42
-
SHA512
f7da1394b02c47d4e00f6f53f1019b938a3e8445c0efd397277ba524ea3c72fbba5b9ca47198249a026321da49972706a658914823e8583525178f681420112e
Static task
static1
Behavioral task
behavioral1
Sample
90fed56bb0612c4ee99c0c312856f36c.exe
Resource
win7-en-20210920
Malware Config
Extracted
redline
SomeBody
185.215.113.29:36224
Targets
-
-
Target
90fed56bb0612c4ee99c0c312856f36c.exe
-
Size
252KB
-
MD5
90fed56bb0612c4ee99c0c312856f36c
-
SHA1
328f530b6541b53bc6b8da728a57993f5c97175a
-
SHA256
d4e4269b47b81a4a2d0760e76499c97f47d2d40051b3dd3c0f2993b79836bb42
-
SHA512
f7da1394b02c47d4e00f6f53f1019b938a3e8445c0efd397277ba524ea3c72fbba5b9ca47198249a026321da49972706a658914823e8583525178f681420112e
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-