General
-
Target
41b2847aaa35bd5a98d9abdb425707aaba438ec7dacb09b713262cc7555e9be4
-
Size
239KB
-
Sample
211104-lnle9agbg4
-
MD5
3117759ee3776d3fcea3a012822ee58b
-
SHA1
f007980dc6e3ebc9a3ca803da024b0b684b5ae98
-
SHA256
41b2847aaa35bd5a98d9abdb425707aaba438ec7dacb09b713262cc7555e9be4
-
SHA512
4bf107a6291a4b4700eb4c05d238a13b29448546ba193f518ef251999613599ec07d4a786315ce5dd5ff76f9299a746c4e970617fdf28036ba75d0e2a654dcfb
Static task
static1
Malware Config
Extracted
redline
SomeBody
185.215.113.29:36224
Targets
-
-
Target
41b2847aaa35bd5a98d9abdb425707aaba438ec7dacb09b713262cc7555e9be4
-
Size
239KB
-
MD5
3117759ee3776d3fcea3a012822ee58b
-
SHA1
f007980dc6e3ebc9a3ca803da024b0b684b5ae98
-
SHA256
41b2847aaa35bd5a98d9abdb425707aaba438ec7dacb09b713262cc7555e9be4
-
SHA512
4bf107a6291a4b4700eb4c05d238a13b29448546ba193f518ef251999613599ec07d4a786315ce5dd5ff76f9299a746c4e970617fdf28036ba75d0e2a654dcfb
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-