General
-
Target
6dea147888a1685581642e840b4901cd0191ce7227957aeec4d5b7f23ecc14bd
-
Size
414KB
-
Sample
211105-l52tkabcf9
-
MD5
dbfca534c05be8ff0a7ef796937e135d
-
SHA1
fc185ca1c8472c6a5b4eb79e1998773a3354b362
-
SHA256
6dea147888a1685581642e840b4901cd0191ce7227957aeec4d5b7f23ecc14bd
-
SHA512
3571a9b1fabc356edf11eb399b3df9fc769055b37d4935a1ac9aea51e59da3370cfee903e9eac6727455631a321b1f0be445e91f8fa1fa525a8b71f3679fa556
Static task
static1
Malware Config
Extracted
redline
SomeBody
185.215.113.29:36224
Targets
-
-
Target
6dea147888a1685581642e840b4901cd0191ce7227957aeec4d5b7f23ecc14bd
-
Size
414KB
-
MD5
dbfca534c05be8ff0a7ef796937e135d
-
SHA1
fc185ca1c8472c6a5b4eb79e1998773a3354b362
-
SHA256
6dea147888a1685581642e840b4901cd0191ce7227957aeec4d5b7f23ecc14bd
-
SHA512
3571a9b1fabc356edf11eb399b3df9fc769055b37d4935a1ac9aea51e59da3370cfee903e9eac6727455631a321b1f0be445e91f8fa1fa525a8b71f3679fa556
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-