General
-
Target
4bbea2456c1cd23c56b7fd14673de41ecb1cfa6b919029fa21e47fa241326627
-
Size
388KB
-
Sample
220123-n4swdagac5
-
MD5
0f2a8edc8c36375e8329b75996e698f8
-
SHA1
9001b98a33c4395c36dc37b42c749f72c8721a83
-
SHA256
4bbea2456c1cd23c56b7fd14673de41ecb1cfa6b919029fa21e47fa241326627
-
SHA512
e6f60440f99d857d6aa9dc009fa7b152a77d3ef013328549e7db9ad79f07d229fae49fb3e0cf4d40fb8030f5bdd379f29d9200e770202d2b3da4957873ad24bb
Static task
static1
Malware Config
Extracted
redline
NONAME
45.9.20.111:1355
Targets
-
-
Target
4bbea2456c1cd23c56b7fd14673de41ecb1cfa6b919029fa21e47fa241326627
-
Size
388KB
-
MD5
0f2a8edc8c36375e8329b75996e698f8
-
SHA1
9001b98a33c4395c36dc37b42c749f72c8721a83
-
SHA256
4bbea2456c1cd23c56b7fd14673de41ecb1cfa6b919029fa21e47fa241326627
-
SHA512
e6f60440f99d857d6aa9dc009fa7b152a77d3ef013328549e7db9ad79f07d229fae49fb3e0cf4d40fb8030f5bdd379f29d9200e770202d2b3da4957873ad24bb
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-