General
-
Target
6b95f2e2951eef756abab3d8ff6a757219c2153c83792129abc627c03ae3cd79
-
Size
412KB
-
Sample
211105-w67rbahfhr
-
MD5
be212bc1ca38a2186ef9a69a94246e42
-
SHA1
e6f146e41b4fc9d58971b644a87387ed37508237
-
SHA256
6b95f2e2951eef756abab3d8ff6a757219c2153c83792129abc627c03ae3cd79
-
SHA512
c7450a3834e33ec62101bc218da9fbd6851de236ddaaa52c5d8b2bbbee11c912941832eedc757b561b92a858b65463f38262203195bd988ad968a9e1bce05c70
Static task
static1
Malware Config
Extracted
redline
SomeBody
185.215.113.29:36224
Targets
-
-
Target
6b95f2e2951eef756abab3d8ff6a757219c2153c83792129abc627c03ae3cd79
-
Size
412KB
-
MD5
be212bc1ca38a2186ef9a69a94246e42
-
SHA1
e6f146e41b4fc9d58971b644a87387ed37508237
-
SHA256
6b95f2e2951eef756abab3d8ff6a757219c2153c83792129abc627c03ae3cd79
-
SHA512
c7450a3834e33ec62101bc218da9fbd6851de236ddaaa52c5d8b2bbbee11c912941832eedc757b561b92a858b65463f38262203195bd988ad968a9e1bce05c70
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-