General
-
Target
8e6687877b125bbcac153feb26fa68760510c27fd53f3c00eea8767f6ea9afb8
-
Size
430KB
-
Sample
211207-p77dlshdbn
-
MD5
232518b7a56d5a705b60732698a99b5c
-
SHA1
82f0dd0566cd625626d917cb44a104cfa946b223
-
SHA256
8e6687877b125bbcac153feb26fa68760510c27fd53f3c00eea8767f6ea9afb8
-
SHA512
43a0bb5f8bcefdfe24e1afd7bf5f002adec8db1be228ab926237280e29f5d4c800bd04575d6c984e6b62e08537f8426a517fe90264436130cd8a3bf881a33f56
Static task
static1
Behavioral task
behavioral1
Sample
8e6687877b125bbcac153feb26fa68760510c27fd53f3c00eea8767f6ea9afb8.exe
Resource
win10-en-20211014
Malware Config
Extracted
redline
SewPalpadin
185.215.113.29:26828
Targets
-
-
Target
8e6687877b125bbcac153feb26fa68760510c27fd53f3c00eea8767f6ea9afb8
-
Size
430KB
-
MD5
232518b7a56d5a705b60732698a99b5c
-
SHA1
82f0dd0566cd625626d917cb44a104cfa946b223
-
SHA256
8e6687877b125bbcac153feb26fa68760510c27fd53f3c00eea8767f6ea9afb8
-
SHA512
43a0bb5f8bcefdfe24e1afd7bf5f002adec8db1be228ab926237280e29f5d4c800bd04575d6c984e6b62e08537f8426a517fe90264436130cd8a3bf881a33f56
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-