General
-
Target
a3dbdd0cb8939ed5486e17f680482164c708e9cc288dd3f563a7e4fdd1af18b9
-
Size
362KB
-
Sample
211103-sxkzeabcdl
-
MD5
455a2ea748ca955c301e6582eac98265
-
SHA1
7afd1534f5acdcfa9a87954defc7a03974cbf884
-
SHA256
a3dbdd0cb8939ed5486e17f680482164c708e9cc288dd3f563a7e4fdd1af18b9
-
SHA512
071d8ca89de93e36e4d522ccc186c80ccb5cbb0e153d5621c30a7ec0ff27ceb66881ccb81e48a7969c8c9fa1634850e0ece2ac561c028d50d83b7c462dd54bd0
Static task
static1
Malware Config
Extracted
redline
SomeBody
185.215.113.29:36224
Targets
-
-
Target
a3dbdd0cb8939ed5486e17f680482164c708e9cc288dd3f563a7e4fdd1af18b9
-
Size
362KB
-
MD5
455a2ea748ca955c301e6582eac98265
-
SHA1
7afd1534f5acdcfa9a87954defc7a03974cbf884
-
SHA256
a3dbdd0cb8939ed5486e17f680482164c708e9cc288dd3f563a7e4fdd1af18b9
-
SHA512
071d8ca89de93e36e4d522ccc186c80ccb5cbb0e153d5621c30a7ec0ff27ceb66881ccb81e48a7969c8c9fa1634850e0ece2ac561c028d50d83b7c462dd54bd0
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-