General
-
Target
d917a2d74c3a2c7d76fab64fb32cd63d29f06582d4ab312099d228d10e72d014
-
Size
413KB
-
Sample
211104-3wwpmafahj
-
MD5
35adc409b11e53d2def743aff44f86e0
-
SHA1
d02c8ec6feb7f86f96810014fa065b13d379ac93
-
SHA256
d917a2d74c3a2c7d76fab64fb32cd63d29f06582d4ab312099d228d10e72d014
-
SHA512
6eaf4a1b11478bf320bc78d242aab3ac064ce2746d3addfc33bc352b1ca02562ae7c00add62868b99e7353c41157e6ed0867e4901234198900fd71b9e51a1851
Static task
static1
Malware Config
Extracted
redline
SomeBody
185.215.113.29:36224
Targets
-
-
Target
d917a2d74c3a2c7d76fab64fb32cd63d29f06582d4ab312099d228d10e72d014
-
Size
413KB
-
MD5
35adc409b11e53d2def743aff44f86e0
-
SHA1
d02c8ec6feb7f86f96810014fa065b13d379ac93
-
SHA256
d917a2d74c3a2c7d76fab64fb32cd63d29f06582d4ab312099d228d10e72d014
-
SHA512
6eaf4a1b11478bf320bc78d242aab3ac064ce2746d3addfc33bc352b1ca02562ae7c00add62868b99e7353c41157e6ed0867e4901234198900fd71b9e51a1851
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-