General
-
Target
6e089bf334ab285e8cad41d288d9a72b99959a806d733380456fa8b408d4f6db
-
Size
441KB
-
Sample
220117-s9ye9sbdem
-
MD5
03d0f78e6fecd2144eec52e8ba4ad05b
-
SHA1
681274a73e739424eb547667bae07f4b9c52cb7b
-
SHA256
6e089bf334ab285e8cad41d288d9a72b99959a806d733380456fa8b408d4f6db
-
SHA512
c363761bbf40c3543728397c86a0642fec8d8da4b31c7acdcebcb52ebe7bb80c62c0fefffea4b19add0cbbb0b0057c58e87b376d577cb0be287fa8e2b68eb12f
Static task
static1
Malware Config
Extracted
redline
noname
185.215.113.29:34865
Targets
-
-
Target
6e089bf334ab285e8cad41d288d9a72b99959a806d733380456fa8b408d4f6db
-
Size
441KB
-
MD5
03d0f78e6fecd2144eec52e8ba4ad05b
-
SHA1
681274a73e739424eb547667bae07f4b9c52cb7b
-
SHA256
6e089bf334ab285e8cad41d288d9a72b99959a806d733380456fa8b408d4f6db
-
SHA512
c363761bbf40c3543728397c86a0642fec8d8da4b31c7acdcebcb52ebe7bb80c62c0fefffea4b19add0cbbb0b0057c58e87b376d577cb0be287fa8e2b68eb12f
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-