General
-
Target
ed3c75b50492274dcbaab72c009c08bece885033ca84d7f00c8dfc73fefd5633
-
Size
416KB
-
Sample
220119-cftxzsefhm
-
MD5
eb7af73ac87aa9807420de4e09496c04
-
SHA1
749bba98e58c1974ea79da6b13e4a6c843868c7a
-
SHA256
ed3c75b50492274dcbaab72c009c08bece885033ca84d7f00c8dfc73fefd5633
-
SHA512
198b3294e4600fd82e254698ce30339548b58b642fd0f86e9be8b8e0aa00b2ae94b52ee1a5d244f285e9457a5888af78f1532d01825c07bf7deb0163f29935b9
Static task
static1
Malware Config
Extracted
redline
noname
185.215.113.29:34865
Targets
-
-
Target
ed3c75b50492274dcbaab72c009c08bece885033ca84d7f00c8dfc73fefd5633
-
Size
416KB
-
MD5
eb7af73ac87aa9807420de4e09496c04
-
SHA1
749bba98e58c1974ea79da6b13e4a6c843868c7a
-
SHA256
ed3c75b50492274dcbaab72c009c08bece885033ca84d7f00c8dfc73fefd5633
-
SHA512
198b3294e4600fd82e254698ce30339548b58b642fd0f86e9be8b8e0aa00b2ae94b52ee1a5d244f285e9457a5888af78f1532d01825c07bf7deb0163f29935b9
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-