General
-
Target
192db7c2cdf635940fbd910c29c621f49595e95867ed6e71949ed756950c85b6
-
Size
360KB
-
Sample
211103-nsyx9adfe3
-
MD5
e3992b7b17fdc2416b6d76b8bd78fb38
-
SHA1
9f66271065275e760e4eef88c99846156e6acbed
-
SHA256
192db7c2cdf635940fbd910c29c621f49595e95867ed6e71949ed756950c85b6
-
SHA512
802e879409c6c90de641693932ac72c6db6bdfdce08f00cfce713694a8df0a0b577229538586cd26d7aecbe9204dc9a926e5aa72b016bc7016f65798eb481a20
Static task
static1
Malware Config
Extracted
redline
SomeBody
185.215.113.29:36224
Targets
-
-
Target
192db7c2cdf635940fbd910c29c621f49595e95867ed6e71949ed756950c85b6
-
Size
360KB
-
MD5
e3992b7b17fdc2416b6d76b8bd78fb38
-
SHA1
9f66271065275e760e4eef88c99846156e6acbed
-
SHA256
192db7c2cdf635940fbd910c29c621f49595e95867ed6e71949ed756950c85b6
-
SHA512
802e879409c6c90de641693932ac72c6db6bdfdce08f00cfce713694a8df0a0b577229538586cd26d7aecbe9204dc9a926e5aa72b016bc7016f65798eb481a20
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-