General
-
Target
b67ed9062a7ae68480e8b06d2e90f3a2d0709bcd6f3985ec16b50ad7f26b04eb
-
Size
363KB
-
Sample
211103-x7w7msefc5
-
MD5
ba33bba3ff5c4810541206e176eb291b
-
SHA1
23ccab1d58107ea63e4a10ded948d751745c447e
-
SHA256
b67ed9062a7ae68480e8b06d2e90f3a2d0709bcd6f3985ec16b50ad7f26b04eb
-
SHA512
6bc3462f5184d0bbbd79ee6e2746604487392d085e9dcc23e55ead242b8ae087f9f05baf3bccd6370ac48ef82ded53d5e7374ccb6d8e5e80b338da678a947b06
Static task
static1
Malware Config
Extracted
redline
SomeBody
185.215.113.29:36224
Targets
-
-
Target
b67ed9062a7ae68480e8b06d2e90f3a2d0709bcd6f3985ec16b50ad7f26b04eb
-
Size
363KB
-
MD5
ba33bba3ff5c4810541206e176eb291b
-
SHA1
23ccab1d58107ea63e4a10ded948d751745c447e
-
SHA256
b67ed9062a7ae68480e8b06d2e90f3a2d0709bcd6f3985ec16b50ad7f26b04eb
-
SHA512
6bc3462f5184d0bbbd79ee6e2746604487392d085e9dcc23e55ead242b8ae087f9f05baf3bccd6370ac48ef82ded53d5e7374ccb6d8e5e80b338da678a947b06
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-