General
-
Target
0a043a61718a2b913deea17a081bcb9e1169b8ded92d8ae64b9c3e90c7ab310b
-
Size
239KB
-
Sample
211104-gcwdvsfhd6
-
MD5
e761022c6e7560da6f7d9f971455f8dd
-
SHA1
ff1aa1ce8742cc1b0837cb669a34bd1a59b49557
-
SHA256
0a043a61718a2b913deea17a081bcb9e1169b8ded92d8ae64b9c3e90c7ab310b
-
SHA512
a9a51e17e994fd35d2d3cee79e51b1545422e897f969f1aeb12177785ce6c7e3aba124cc85e6518a9b50bd79be00384105fe4e04ae0ac10442a9506c9aa774f7
Static task
static1
Malware Config
Extracted
redline
SomeBody
185.215.113.29:36224
Targets
-
-
Target
0a043a61718a2b913deea17a081bcb9e1169b8ded92d8ae64b9c3e90c7ab310b
-
Size
239KB
-
MD5
e761022c6e7560da6f7d9f971455f8dd
-
SHA1
ff1aa1ce8742cc1b0837cb669a34bd1a59b49557
-
SHA256
0a043a61718a2b913deea17a081bcb9e1169b8ded92d8ae64b9c3e90c7ab310b
-
SHA512
a9a51e17e994fd35d2d3cee79e51b1545422e897f969f1aeb12177785ce6c7e3aba124cc85e6518a9b50bd79be00384105fe4e04ae0ac10442a9506c9aa774f7
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-