General
-
Target
9958ffa17c21a3bd2eae6470ff55187074f9f75f7efc60d8be13a28dd4e1e490
-
Size
243KB
-
Sample
211104-vj8jnaecaj
-
MD5
17d9d0559e3b81e8bee9f0c2d240d7e9
-
SHA1
2b4d85ca86de7a48a7c75acbd447ee2f9a33c980
-
SHA256
9958ffa17c21a3bd2eae6470ff55187074f9f75f7efc60d8be13a28dd4e1e490
-
SHA512
d9099f828ae0db201498096f1529494dc41afab393a54047f4ebf1096b14ac05a358eca3c9ed6c31fdd6d6b3354c54d5bad69f6162e231f5bdf63c4fe3c6535c
Static task
static1
Malware Config
Extracted
redline
SomeBody
185.215.113.29:36224
Targets
-
-
Target
9958ffa17c21a3bd2eae6470ff55187074f9f75f7efc60d8be13a28dd4e1e490
-
Size
243KB
-
MD5
17d9d0559e3b81e8bee9f0c2d240d7e9
-
SHA1
2b4d85ca86de7a48a7c75acbd447ee2f9a33c980
-
SHA256
9958ffa17c21a3bd2eae6470ff55187074f9f75f7efc60d8be13a28dd4e1e490
-
SHA512
d9099f828ae0db201498096f1529494dc41afab393a54047f4ebf1096b14ac05a358eca3c9ed6c31fdd6d6b3354c54d5bad69f6162e231f5bdf63c4fe3c6535c
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-