General
-
Target
3c22f1de889b2fa27f5b9ce06356b6ed9167125b8c675709c8d52daf41939eb6
-
Size
414KB
-
Sample
211105-efhwtsfegj
-
MD5
a6f4c203d2cf0594e1e0d6b75233bad2
-
SHA1
1178c7e4eeea86894c24464c30cd8a200e673b06
-
SHA256
3c22f1de889b2fa27f5b9ce06356b6ed9167125b8c675709c8d52daf41939eb6
-
SHA512
e37898c9d15bbd0d19491500ff91cf8493fd720fd516b6d7851f26fd6cfeed10154a722e5987067845267d4387bbe1e145e1c8331d175557564f3d985c995ce5
Static task
static1
Malware Config
Extracted
redline
SomeBody
185.215.113.29:36224
Targets
-
-
Target
3c22f1de889b2fa27f5b9ce06356b6ed9167125b8c675709c8d52daf41939eb6
-
Size
414KB
-
MD5
a6f4c203d2cf0594e1e0d6b75233bad2
-
SHA1
1178c7e4eeea86894c24464c30cd8a200e673b06
-
SHA256
3c22f1de889b2fa27f5b9ce06356b6ed9167125b8c675709c8d52daf41939eb6
-
SHA512
e37898c9d15bbd0d19491500ff91cf8493fd720fd516b6d7851f26fd6cfeed10154a722e5987067845267d4387bbe1e145e1c8331d175557564f3d985c995ce5
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-