General
-
Target
74103c67deed80cc59f4667eba915e6d67822f69c12c95de7a83f4f93e1e38f1
-
Size
363KB
-
Sample
211103-qrvwbabafl
-
MD5
a2e4e9b773a70bea9d54efa9cdcf353b
-
SHA1
96b1fa04ed24884ccf16a1ee2178715ba7daa23c
-
SHA256
74103c67deed80cc59f4667eba915e6d67822f69c12c95de7a83f4f93e1e38f1
-
SHA512
ab067efac780b298a49a12da4292f80012625451a04c92fbc557770e9a933228fcde9d01a194d7a4c2ca37a9e4d615088dc34077efd7a4157563067120bbeb1a
Static task
static1
Malware Config
Extracted
redline
SomeBody
185.215.113.29:36224
Targets
-
-
Target
74103c67deed80cc59f4667eba915e6d67822f69c12c95de7a83f4f93e1e38f1
-
Size
363KB
-
MD5
a2e4e9b773a70bea9d54efa9cdcf353b
-
SHA1
96b1fa04ed24884ccf16a1ee2178715ba7daa23c
-
SHA256
74103c67deed80cc59f4667eba915e6d67822f69c12c95de7a83f4f93e1e38f1
-
SHA512
ab067efac780b298a49a12da4292f80012625451a04c92fbc557770e9a933228fcde9d01a194d7a4c2ca37a9e4d615088dc34077efd7a4157563067120bbeb1a
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-