General
-
Target
1d6146ea0b1b287a4b9e75c2f1128d2b1c8858c2d917ce37d708686415470c06
-
Size
412KB
-
Sample
211105-vjaydsheem
-
MD5
c849753ed44036765000134e196137e1
-
SHA1
d2488539c90a1f60e849fb6e7e51de20931489f0
-
SHA256
1d6146ea0b1b287a4b9e75c2f1128d2b1c8858c2d917ce37d708686415470c06
-
SHA512
40e9922f31d4e8701bf04754e40b3d3735b7cb9f40e714837e787ddfa75ada77e4068ad1c1a9488f4248a8d880e96a313b828591708dfe152dac563067211ac4
Static task
static1
Malware Config
Extracted
redline
SomeBody
185.215.113.29:36224
Targets
-
-
Target
1d6146ea0b1b287a4b9e75c2f1128d2b1c8858c2d917ce37d708686415470c06
-
Size
412KB
-
MD5
c849753ed44036765000134e196137e1
-
SHA1
d2488539c90a1f60e849fb6e7e51de20931489f0
-
SHA256
1d6146ea0b1b287a4b9e75c2f1128d2b1c8858c2d917ce37d708686415470c06
-
SHA512
40e9922f31d4e8701bf04754e40b3d3735b7cb9f40e714837e787ddfa75ada77e4068ad1c1a9488f4248a8d880e96a313b828591708dfe152dac563067211ac4
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-