General
-
Target
c09226aed20de96dca3a3a91db40f82014fae6f0df0320f5037ed554423287f8
-
Size
363KB
-
Sample
211103-sqrtdabcck
-
MD5
3e8b8646a53a664866d50f2b202edb10
-
SHA1
bc30655aa3beafb88cbf6b52aff840768c99a9aa
-
SHA256
c09226aed20de96dca3a3a91db40f82014fae6f0df0320f5037ed554423287f8
-
SHA512
c4b0a8a9555b70eb3715dc1701263e62d5e2f398ae9215f5be3172437c63087cc085cdab39963a4a89d4aef2fcc00cb4985d15048a206a6a2287ced457e29f5f
Static task
static1
Malware Config
Extracted
redline
SomeBody
185.215.113.29:36224
Targets
-
-
Target
c09226aed20de96dca3a3a91db40f82014fae6f0df0320f5037ed554423287f8
-
Size
363KB
-
MD5
3e8b8646a53a664866d50f2b202edb10
-
SHA1
bc30655aa3beafb88cbf6b52aff840768c99a9aa
-
SHA256
c09226aed20de96dca3a3a91db40f82014fae6f0df0320f5037ed554423287f8
-
SHA512
c4b0a8a9555b70eb3715dc1701263e62d5e2f398ae9215f5be3172437c63087cc085cdab39963a4a89d4aef2fcc00cb4985d15048a206a6a2287ced457e29f5f
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-