General
-
Target
ae8b02d15dabc8c130099f6249cffd264b404744f89d85a554d0a6a8b6ff36cd
-
Size
243KB
-
Sample
211104-yrv53shee4
-
MD5
13e380fbc15df12cbaf921b2ae6cfc24
-
SHA1
4cd31c5e2704c561951e03acc027acab2615e32b
-
SHA256
ae8b02d15dabc8c130099f6249cffd264b404744f89d85a554d0a6a8b6ff36cd
-
SHA512
d59a999af558ff9840a78b2120c593aa43ee1c946b1814e4dedcf2b7c83808d77206f23dc2e9fa15996153285d296ae8092773f4cdb0806efcfa04013bcacf9f
Static task
static1
Malware Config
Extracted
redline
SomeBody
185.215.113.29:36224
Targets
-
-
Target
ae8b02d15dabc8c130099f6249cffd264b404744f89d85a554d0a6a8b6ff36cd
-
Size
243KB
-
MD5
13e380fbc15df12cbaf921b2ae6cfc24
-
SHA1
4cd31c5e2704c561951e03acc027acab2615e32b
-
SHA256
ae8b02d15dabc8c130099f6249cffd264b404744f89d85a554d0a6a8b6ff36cd
-
SHA512
d59a999af558ff9840a78b2120c593aa43ee1c946b1814e4dedcf2b7c83808d77206f23dc2e9fa15996153285d296ae8092773f4cdb0806efcfa04013bcacf9f
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-