General
-
Target
7c9a17832677230a40048ac3cd12126cf9715dfb39bb642a45b88ad7a93df7ef
-
Size
386KB
-
Sample
220117-gdccdaggh3
-
MD5
6b08dff00c5fd84f57083ed0a7b25c7c
-
SHA1
d448bac60344fcfea51ab309c1bfe10c3b40c1bc
-
SHA256
7c9a17832677230a40048ac3cd12126cf9715dfb39bb642a45b88ad7a93df7ef
-
SHA512
755bb81632ca7bbdf72b3e68511f0a82057540aca3d6c88ab9b1fbe178e2aa7bcee1fd382bc3b144b5c5587462c0c9dfe7b179fd90042639403f8938bf21285a
Malware Config
Extracted
redline
noname
185.215.113.29:34865
Targets
-
-
Target
7c9a17832677230a40048ac3cd12126cf9715dfb39bb642a45b88ad7a93df7ef
-
Size
386KB
-
MD5
6b08dff00c5fd84f57083ed0a7b25c7c
-
SHA1
d448bac60344fcfea51ab309c1bfe10c3b40c1bc
-
SHA256
7c9a17832677230a40048ac3cd12126cf9715dfb39bb642a45b88ad7a93df7ef
-
SHA512
755bb81632ca7bbdf72b3e68511f0a82057540aca3d6c88ab9b1fbe178e2aa7bcee1fd382bc3b144b5c5587462c0c9dfe7b179fd90042639403f8938bf21285a
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-