General
-
Target
f70de02844974d698f6d552bc1c67771b7208c7bc647a4112832e834355861be
-
Size
239KB
-
Sample
211104-lh3scadcgl
-
MD5
71e7ee68f6ce5b6ed18c2b3503f3edf1
-
SHA1
40a07a77f0ab8baaaac5c213785ea1c0f5246964
-
SHA256
f70de02844974d698f6d552bc1c67771b7208c7bc647a4112832e834355861be
-
SHA512
0c0dd30c65b11c78d96a17c7e758ea0fe83fb9754e507af8195b675ae71cf41c98e26f7ec9d9e0572357fed573203a955429f5545d2e23885b366a946ca89d0c
Static task
static1
Malware Config
Extracted
redline
SomeBody
185.215.113.29:36224
Targets
-
-
Target
f70de02844974d698f6d552bc1c67771b7208c7bc647a4112832e834355861be
-
Size
239KB
-
MD5
71e7ee68f6ce5b6ed18c2b3503f3edf1
-
SHA1
40a07a77f0ab8baaaac5c213785ea1c0f5246964
-
SHA256
f70de02844974d698f6d552bc1c67771b7208c7bc647a4112832e834355861be
-
SHA512
0c0dd30c65b11c78d96a17c7e758ea0fe83fb9754e507af8195b675ae71cf41c98e26f7ec9d9e0572357fed573203a955429f5545d2e23885b366a946ca89d0c
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-