General
-
Target
2a5c2ecb521b4734e85e22f69f23d44f68aa1434c89b53fb02c6362b4fb9d0e1
-
Size
363KB
-
Sample
211103-r7m13sead7
-
MD5
61b61c14cdcaea58c5ea4d9a74a085be
-
SHA1
aef7e0e15ad0a6911f6719521ea5019ad38e4722
-
SHA256
2a5c2ecb521b4734e85e22f69f23d44f68aa1434c89b53fb02c6362b4fb9d0e1
-
SHA512
49b5c13139e73376692b1dfe7fe1248ebacee7c81afc054f08f09d1669de41d0fd4ff829c83c471c0d32c199b6c9845e680b06cbc47c35996f67d1070ef47c4c
Static task
static1
Malware Config
Extracted
redline
SomeBody
185.215.113.29:36224
Targets
-
-
Target
2a5c2ecb521b4734e85e22f69f23d44f68aa1434c89b53fb02c6362b4fb9d0e1
-
Size
363KB
-
MD5
61b61c14cdcaea58c5ea4d9a74a085be
-
SHA1
aef7e0e15ad0a6911f6719521ea5019ad38e4722
-
SHA256
2a5c2ecb521b4734e85e22f69f23d44f68aa1434c89b53fb02c6362b4fb9d0e1
-
SHA512
49b5c13139e73376692b1dfe7fe1248ebacee7c81afc054f08f09d1669de41d0fd4ff829c83c471c0d32c199b6c9845e680b06cbc47c35996f67d1070ef47c4c
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-