General
-
Target
d6085e9e4b9af82c3e7a3b06d5d626c657f9d52e0fda19d2f854d7a03e5ec1c4
-
Size
407KB
-
Sample
220118-vq21fscbf5
-
MD5
22d1f0d87ff0c99852b68c6d1f857610
-
SHA1
38f73b05f7d37765492ae761e988ba649a1a81a0
-
SHA256
d6085e9e4b9af82c3e7a3b06d5d626c657f9d52e0fda19d2f854d7a03e5ec1c4
-
SHA512
c2ecd54b896f87a38656c78eb75930e81f88538460a4e19f12522c4eb84b49631c5f4a218b88a0b1c6b6d69c0f8871b2510997ed22e66d10947a204e5e7b6134
Static task
static1
Malware Config
Extracted
redline
noname
185.215.113.29:34865
Targets
-
-
Target
d6085e9e4b9af82c3e7a3b06d5d626c657f9d52e0fda19d2f854d7a03e5ec1c4
-
Size
407KB
-
MD5
22d1f0d87ff0c99852b68c6d1f857610
-
SHA1
38f73b05f7d37765492ae761e988ba649a1a81a0
-
SHA256
d6085e9e4b9af82c3e7a3b06d5d626c657f9d52e0fda19d2f854d7a03e5ec1c4
-
SHA512
c2ecd54b896f87a38656c78eb75930e81f88538460a4e19f12522c4eb84b49631c5f4a218b88a0b1c6b6d69c0f8871b2510997ed22e66d10947a204e5e7b6134
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-