General
-
Target
d51c31961d6e730c764534bfd9c612333a6ca9b91b3f212f7fb8ddd55d146dd9
-
Size
386KB
-
Sample
220116-3px9wagehj
-
MD5
1da1dab75c15789d47538ba7fe4fc942
-
SHA1
ccd9a0f557bf11538703e150af3049a9ae7390f0
-
SHA256
d51c31961d6e730c764534bfd9c612333a6ca9b91b3f212f7fb8ddd55d146dd9
-
SHA512
45018d5b7db716f37d4a858dbcf91861d822be9575bf49240a7d61b4c75e7bc36e92eafa75af16109d7fb45a745a12c66a3a05f98076d67f313db62c8ca22850
Static task
static1
Malware Config
Extracted
redline
noname
185.215.113.29:34865
Targets
-
-
Target
d51c31961d6e730c764534bfd9c612333a6ca9b91b3f212f7fb8ddd55d146dd9
-
Size
386KB
-
MD5
1da1dab75c15789d47538ba7fe4fc942
-
SHA1
ccd9a0f557bf11538703e150af3049a9ae7390f0
-
SHA256
d51c31961d6e730c764534bfd9c612333a6ca9b91b3f212f7fb8ddd55d146dd9
-
SHA512
45018d5b7db716f37d4a858dbcf91861d822be9575bf49240a7d61b4c75e7bc36e92eafa75af16109d7fb45a745a12c66a3a05f98076d67f313db62c8ca22850
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-