General
-
Target
f2bc32d718c0edc63df71c2e4b345e5158a39796468a13671b181bd8a75f97da
-
Size
243KB
-
Sample
211104-v9y3xahbh7
-
MD5
fcf57b46ecf9891bd343dff3e62db669
-
SHA1
688202f6aa6641d6a3cc546a6f05844ed451eeba
-
SHA256
f2bc32d718c0edc63df71c2e4b345e5158a39796468a13671b181bd8a75f97da
-
SHA512
00fa7281fe0d75752595acd7ece29bf3daf5e6e832f1503f6db91b3fbde5d6a492c397354df2dfa63a53f13e4661f2528898b86d11f4a4da0356a1e1709c27f1
Static task
static1
Malware Config
Extracted
redline
SomeBody
185.215.113.29:36224
Targets
-
-
Target
f2bc32d718c0edc63df71c2e4b345e5158a39796468a13671b181bd8a75f97da
-
Size
243KB
-
MD5
fcf57b46ecf9891bd343dff3e62db669
-
SHA1
688202f6aa6641d6a3cc546a6f05844ed451eeba
-
SHA256
f2bc32d718c0edc63df71c2e4b345e5158a39796468a13671b181bd8a75f97da
-
SHA512
00fa7281fe0d75752595acd7ece29bf3daf5e6e832f1503f6db91b3fbde5d6a492c397354df2dfa63a53f13e4661f2528898b86d11f4a4da0356a1e1709c27f1
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-