General
-
Target
3dcc10a4b292e2e16eb3821ae80982394351dd319783822e6f8bc8b9421ca5b3
-
Size
391KB
-
Sample
220124-gm2cvsdba8
-
MD5
dbf178b19b05a0368beecd79a1d66753
-
SHA1
9e2a011028bb101fd21f0f9e435c1c94ca0b5a6c
-
SHA256
3dcc10a4b292e2e16eb3821ae80982394351dd319783822e6f8bc8b9421ca5b3
-
SHA512
b782e6002edc9e78112b7c95d8c19fdfa248b6de45049c6f53154c05c2439643d17710ad037c4741a7c19892caffd8604220d9355ca7f893b30699482319ffb0
Static task
static1
Malware Config
Extracted
redline
NONAME
45.9.20.111:1355
Targets
-
-
Target
3dcc10a4b292e2e16eb3821ae80982394351dd319783822e6f8bc8b9421ca5b3
-
Size
391KB
-
MD5
dbf178b19b05a0368beecd79a1d66753
-
SHA1
9e2a011028bb101fd21f0f9e435c1c94ca0b5a6c
-
SHA256
3dcc10a4b292e2e16eb3821ae80982394351dd319783822e6f8bc8b9421ca5b3
-
SHA512
b782e6002edc9e78112b7c95d8c19fdfa248b6de45049c6f53154c05c2439643d17710ad037c4741a7c19892caffd8604220d9355ca7f893b30699482319ffb0
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-