General
-
Target
837eaffe316428d137bcdb716e7564fd52aff35ccfe85797a87dca5d60e8f0a5
-
Size
377KB
-
Sample
220122-x87d1acge5
-
MD5
def911ba9e5e210321085a03ac1fff80
-
SHA1
2a7fbbfdbcd4ba127d0e6d7e03460770c61e1be2
-
SHA256
837eaffe316428d137bcdb716e7564fd52aff35ccfe85797a87dca5d60e8f0a5
-
SHA512
035265158d8832ba6ea164409899a0695a03f7e50397415f7e84c1f51e72929631c2da41350e7e7d0875e041db3fa8341e9152173af4c7e492b81c6aea3b5a92
Static task
static1
Malware Config
Extracted
redline
NONAME
45.9.20.111:1355
Targets
-
-
Target
837eaffe316428d137bcdb716e7564fd52aff35ccfe85797a87dca5d60e8f0a5
-
Size
377KB
-
MD5
def911ba9e5e210321085a03ac1fff80
-
SHA1
2a7fbbfdbcd4ba127d0e6d7e03460770c61e1be2
-
SHA256
837eaffe316428d137bcdb716e7564fd52aff35ccfe85797a87dca5d60e8f0a5
-
SHA512
035265158d8832ba6ea164409899a0695a03f7e50397415f7e84c1f51e72929631c2da41350e7e7d0875e041db3fa8341e9152173af4c7e492b81c6aea3b5a92
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-