General
-
Target
482356eca4031add5e0da724b2977d058de0be87df9a78aa8a56c98baef755d5
-
Size
389KB
-
Sample
211103-2y95csfdg7
-
MD5
b963ebbbeccc44529eb82b4d36171f6c
-
SHA1
2d3f20e9f4764219ecd2b31677805214f7b40f7c
-
SHA256
482356eca4031add5e0da724b2977d058de0be87df9a78aa8a56c98baef755d5
-
SHA512
c900006d8ff142511c9d45f1d22993686c3e29efa67b0068a545d27413d258a2aaf75edc1e3f917add79685ffe13542c7ab8a63ffdc48c6b0afa3c60828d7ad4
Static task
static1
Malware Config
Extracted
redline
SomeBody
185.215.113.29:36224
Targets
-
-
Target
482356eca4031add5e0da724b2977d058de0be87df9a78aa8a56c98baef755d5
-
Size
389KB
-
MD5
b963ebbbeccc44529eb82b4d36171f6c
-
SHA1
2d3f20e9f4764219ecd2b31677805214f7b40f7c
-
SHA256
482356eca4031add5e0da724b2977d058de0be87df9a78aa8a56c98baef755d5
-
SHA512
c900006d8ff142511c9d45f1d22993686c3e29efa67b0068a545d27413d258a2aaf75edc1e3f917add79685ffe13542c7ab8a63ffdc48c6b0afa3c60828d7ad4
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-