General
-
Target
5e1681414f3499dfd018b56ed3de423d8cb7bfc308ccae542632a43c843fac8f
-
Size
390KB
-
Sample
220124-d2z7kabcdr
-
MD5
dedddbfc4dbc233c0203e0171f98cc7a
-
SHA1
4255a96bc0395e35aef87879884674a6375ae63e
-
SHA256
5e1681414f3499dfd018b56ed3de423d8cb7bfc308ccae542632a43c843fac8f
-
SHA512
57978be1c8bc056cfdd71c942cfdcb10ac78bb41240e02bce3b73c26447472c68cbd08c84c4541a2bfab88a534bf1271a11047407cff06dd9d663de5c961c904
Static task
static1
Malware Config
Extracted
redline
NONAME
45.9.20.111:1355
Targets
-
-
Target
5e1681414f3499dfd018b56ed3de423d8cb7bfc308ccae542632a43c843fac8f
-
Size
390KB
-
MD5
dedddbfc4dbc233c0203e0171f98cc7a
-
SHA1
4255a96bc0395e35aef87879884674a6375ae63e
-
SHA256
5e1681414f3499dfd018b56ed3de423d8cb7bfc308ccae542632a43c843fac8f
-
SHA512
57978be1c8bc056cfdd71c942cfdcb10ac78bb41240e02bce3b73c26447472c68cbd08c84c4541a2bfab88a534bf1271a11047407cff06dd9d663de5c961c904
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-