General
-
Target
3895d04637f009f8af216d10b5366b7ca8282f4b6c4c271e6c24ddbe030ab578
-
Size
413KB
-
Sample
220118-rnwtwabfel
-
MD5
77ad1b1c04cc1af4fbe89255fbb62e5e
-
SHA1
f59fff49294a9957a877eddcccc27e9aa68345c6
-
SHA256
3895d04637f009f8af216d10b5366b7ca8282f4b6c4c271e6c24ddbe030ab578
-
SHA512
01c62402f6d6ad3b494ed6439aaab6f52661b060017b9c2ab26742de19035ab4dd12b323a853a4c9d798cb4fb02892683cec82aa9e5aa66ef0b3ce36fc8b56fc
Static task
static1
Malware Config
Extracted
redline
noname
185.215.113.29:34865
Targets
-
-
Target
3895d04637f009f8af216d10b5366b7ca8282f4b6c4c271e6c24ddbe030ab578
-
Size
413KB
-
MD5
77ad1b1c04cc1af4fbe89255fbb62e5e
-
SHA1
f59fff49294a9957a877eddcccc27e9aa68345c6
-
SHA256
3895d04637f009f8af216d10b5366b7ca8282f4b6c4c271e6c24ddbe030ab578
-
SHA512
01c62402f6d6ad3b494ed6439aaab6f52661b060017b9c2ab26742de19035ab4dd12b323a853a4c9d798cb4fb02892683cec82aa9e5aa66ef0b3ce36fc8b56fc
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-