General
-
Target
234e4cc68a33ec5f9b94a393c85bfc91d17e87bc911713f34e39342d29bf5607
-
Size
443KB
-
Sample
220126-l1z46sbegr
-
MD5
3054fb0ce445d3b5f110d8cc459c82d5
-
SHA1
17033da6178337e20c4354b09f272fc49b32e761
-
SHA256
234e4cc68a33ec5f9b94a393c85bfc91d17e87bc911713f34e39342d29bf5607
-
SHA512
b9379559062271d97cb40998118ea40ba9bba99aa87d5b4d2fea3ab32311f887f31d6a5f334ca5d9c7fbdf920cd9015196eb5541a8a6b89256d130e54d732d8a
Static task
static1
Behavioral task
behavioral1
Sample
234e4cc68a33ec5f9b94a393c85bfc91d17e87bc911713f34e39342d29bf5607.exe
Resource
win10-en-20211208
Malware Config
Extracted
redline
sewpalpadin
185.215.113.29:20819
Targets
-
-
Target
234e4cc68a33ec5f9b94a393c85bfc91d17e87bc911713f34e39342d29bf5607
-
Size
443KB
-
MD5
3054fb0ce445d3b5f110d8cc459c82d5
-
SHA1
17033da6178337e20c4354b09f272fc49b32e761
-
SHA256
234e4cc68a33ec5f9b94a393c85bfc91d17e87bc911713f34e39342d29bf5607
-
SHA512
b9379559062271d97cb40998118ea40ba9bba99aa87d5b4d2fea3ab32311f887f31d6a5f334ca5d9c7fbdf920cd9015196eb5541a8a6b89256d130e54d732d8a
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-