General
-
Target
0f6453fb2d6bebd595ee9acb053b46dbe50fe874ccb39e527a1ac710fa25fad6
-
Size
412KB
-
Sample
211105-wlbs5shfem
-
MD5
c124f93f540085acac2ae4e901688276
-
SHA1
4e9a3630c583e6d728e51713293b8531171817ef
-
SHA256
0f6453fb2d6bebd595ee9acb053b46dbe50fe874ccb39e527a1ac710fa25fad6
-
SHA512
246acee878b0973a2c5dbbf47129ebe2d037b2fe942093fc7e785fe3531f247ade9afb43ced5b002f729de1269a154a90911a7a40c5a6ccb2c619c581d2758ad
Static task
static1
Malware Config
Extracted
redline
SomeBody
185.215.113.29:36224
Targets
-
-
Target
0f6453fb2d6bebd595ee9acb053b46dbe50fe874ccb39e527a1ac710fa25fad6
-
Size
412KB
-
MD5
c124f93f540085acac2ae4e901688276
-
SHA1
4e9a3630c583e6d728e51713293b8531171817ef
-
SHA256
0f6453fb2d6bebd595ee9acb053b46dbe50fe874ccb39e527a1ac710fa25fad6
-
SHA512
246acee878b0973a2c5dbbf47129ebe2d037b2fe942093fc7e785fe3531f247ade9afb43ced5b002f729de1269a154a90911a7a40c5a6ccb2c619c581d2758ad
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-