General
-
Target
b59f46fb80411da4c881eb7ed049e8a874fa45f08e51f663ec7b4254a65a09ab
-
Size
377KB
-
Sample
220122-1agx8sdbh5
-
MD5
44129f8430aeec5bead5e0fca98f28b4
-
SHA1
8f85f1559d0e3c0400801e6073b0c72edcb8cbab
-
SHA256
b59f46fb80411da4c881eb7ed049e8a874fa45f08e51f663ec7b4254a65a09ab
-
SHA512
bb5143a7133a54124b30995853699964fbe183bfe86fe19e7a98f18cdca536e3d354427cc7e803fd79d7508c612f4447f84aa2829717268cefec47e6d3d35057
Malware Config
Extracted
redline
NONAME
45.9.20.111:1355
Targets
-
-
Target
b59f46fb80411da4c881eb7ed049e8a874fa45f08e51f663ec7b4254a65a09ab
-
Size
377KB
-
MD5
44129f8430aeec5bead5e0fca98f28b4
-
SHA1
8f85f1559d0e3c0400801e6073b0c72edcb8cbab
-
SHA256
b59f46fb80411da4c881eb7ed049e8a874fa45f08e51f663ec7b4254a65a09ab
-
SHA512
bb5143a7133a54124b30995853699964fbe183bfe86fe19e7a98f18cdca536e3d354427cc7e803fd79d7508c612f4447f84aa2829717268cefec47e6d3d35057
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-