General
-
Target
d6cf7717b3d46261b017d3d644733738466df6dedf1204068801cd3ac0f1b1fb
-
Size
376KB
-
Sample
220122-eyft7ahef9
-
MD5
446fbb8c4ee0d8323d62e9377ab7fbcd
-
SHA1
6ab4a4979fcd53016f6946357627c9efdc4ccb15
-
SHA256
d6cf7717b3d46261b017d3d644733738466df6dedf1204068801cd3ac0f1b1fb
-
SHA512
0d4ea382cb2d64e8511fb18c637734678ba6da0e403bb60b1391bd6fa7a4e403be2569f7a3871e6a00547ca67efc12e66f02845e475d5bf675c3d9177d8e08f8
Static task
static1
Malware Config
Extracted
redline
NONAME
45.9.20.111:1355
Targets
-
-
Target
d6cf7717b3d46261b017d3d644733738466df6dedf1204068801cd3ac0f1b1fb
-
Size
376KB
-
MD5
446fbb8c4ee0d8323d62e9377ab7fbcd
-
SHA1
6ab4a4979fcd53016f6946357627c9efdc4ccb15
-
SHA256
d6cf7717b3d46261b017d3d644733738466df6dedf1204068801cd3ac0f1b1fb
-
SHA512
0d4ea382cb2d64e8511fb18c637734678ba6da0e403bb60b1391bd6fa7a4e403be2569f7a3871e6a00547ca67efc12e66f02845e475d5bf675c3d9177d8e08f8
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-