General
-
Target
45adc28517f7b1db140049e8b06fe0aff6307a12bdd500ca443164779df32e11
-
Size
390KB
-
Sample
220123-2zg5zaged3
-
MD5
8e9bc983855541fefff75378bc5562fc
-
SHA1
c36fedfedb31593d477b6fc63b60a68e3bd5be4e
-
SHA256
45adc28517f7b1db140049e8b06fe0aff6307a12bdd500ca443164779df32e11
-
SHA512
de658196698ab4b5bfebe2ceeebaf7f2e492703631f8eb9889bbb075003c68e8b60a3f45b4a8f1fccf5b9a6576af5eb6d2d43c11c06456069594a23d05450d91
Malware Config
Extracted
redline
NONAME
45.9.20.111:1355
Targets
-
-
Target
45adc28517f7b1db140049e8b06fe0aff6307a12bdd500ca443164779df32e11
-
Size
390KB
-
MD5
8e9bc983855541fefff75378bc5562fc
-
SHA1
c36fedfedb31593d477b6fc63b60a68e3bd5be4e
-
SHA256
45adc28517f7b1db140049e8b06fe0aff6307a12bdd500ca443164779df32e11
-
SHA512
de658196698ab4b5bfebe2ceeebaf7f2e492703631f8eb9889bbb075003c68e8b60a3f45b4a8f1fccf5b9a6576af5eb6d2d43c11c06456069594a23d05450d91
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-