General
-
Target
c65e4ee579256e0b9ac2098dee104d63f03d320477775e974b1f7a6352346a1b
-
Size
402KB
-
Sample
211125-ze3vtsgfep
-
MD5
688975793ca3b6f32bee1114c2e904a1
-
SHA1
16516523b8b8ebe0d7aa82cee8c3014db7939a68
-
SHA256
c65e4ee579256e0b9ac2098dee104d63f03d320477775e974b1f7a6352346a1b
-
SHA512
a4a1a167db050b79c61c418d4c25234f54e11d0427259b5282b61adb58417c39256e3f20ce6aadc187cc35d2d4ac694f9d5887d88c6aa52bface44a9fa762d2c
Static task
static1
Malware Config
Extracted
redline
Pubdate
193.56.146.64:65441
Targets
-
-
Target
c65e4ee579256e0b9ac2098dee104d63f03d320477775e974b1f7a6352346a1b
-
Size
402KB
-
MD5
688975793ca3b6f32bee1114c2e904a1
-
SHA1
16516523b8b8ebe0d7aa82cee8c3014db7939a68
-
SHA256
c65e4ee579256e0b9ac2098dee104d63f03d320477775e974b1f7a6352346a1b
-
SHA512
a4a1a167db050b79c61c418d4c25234f54e11d0427259b5282b61adb58417c39256e3f20ce6aadc187cc35d2d4ac694f9d5887d88c6aa52bface44a9fa762d2c
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-