General
-
Target
488dedd3ee899dc27dcd19436efdeaa4ea0c6145fbf99ff93bc3971649e78fd3
-
Size
411KB
-
Sample
211105-ztfzlscgf7
-
MD5
18290b488551427d043e207c16fc41e7
-
SHA1
e73935b75f978a4fec25f60edb49cc025ada4a65
-
SHA256
488dedd3ee899dc27dcd19436efdeaa4ea0c6145fbf99ff93bc3971649e78fd3
-
SHA512
694373fb6397ba4c86238f4d8efa36fe6dfee3233bff228c49f0ac722aa08c8d1c386f267b78c7730843c1ca483749c94d79022a909a73a91b93f4ead92de860
Static task
static1
Malware Config
Extracted
redline
SomeBody
185.215.113.29:36224
Targets
-
-
Target
488dedd3ee899dc27dcd19436efdeaa4ea0c6145fbf99ff93bc3971649e78fd3
-
Size
411KB
-
MD5
18290b488551427d043e207c16fc41e7
-
SHA1
e73935b75f978a4fec25f60edb49cc025ada4a65
-
SHA256
488dedd3ee899dc27dcd19436efdeaa4ea0c6145fbf99ff93bc3971649e78fd3
-
SHA512
694373fb6397ba4c86238f4d8efa36fe6dfee3233bff228c49f0ac722aa08c8d1c386f267b78c7730843c1ca483749c94d79022a909a73a91b93f4ead92de860
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-