General
-
Target
4103b546b116b33b5da3ea413b85b688cb0da3ebcf73d56d7c737640dd1843bc
-
Size
370KB
-
Sample
220123-kc5jbafef2
-
MD5
4a788b654c0b380e5c1bc3a42054f6a8
-
SHA1
722e30b2d25305fa2e627947b17880feee75e40c
-
SHA256
4103b546b116b33b5da3ea413b85b688cb0da3ebcf73d56d7c737640dd1843bc
-
SHA512
0457e4d3ac815d58e0f671836e689f8f093e656fbfe0aa2ab1f0ed0b3d8da132a90438e09a3e7e795c6929bec1c307d54e547fd79e9d236498b9de1f459686f1
Static task
static1
Malware Config
Extracted
redline
NONAME
45.9.20.111:1355
Targets
-
-
Target
4103b546b116b33b5da3ea413b85b688cb0da3ebcf73d56d7c737640dd1843bc
-
Size
370KB
-
MD5
4a788b654c0b380e5c1bc3a42054f6a8
-
SHA1
722e30b2d25305fa2e627947b17880feee75e40c
-
SHA256
4103b546b116b33b5da3ea413b85b688cb0da3ebcf73d56d7c737640dd1843bc
-
SHA512
0457e4d3ac815d58e0f671836e689f8f093e656fbfe0aa2ab1f0ed0b3d8da132a90438e09a3e7e795c6929bec1c307d54e547fd79e9d236498b9de1f459686f1
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-