General
-
Target
05a6a53ee7e31e73c45a26110ba7b50c3aaa380cad2fa9ea887b1b8c1743ee3d
-
Size
380KB
-
Sample
220127-br42nadgc3
-
MD5
c3c0f9d8625ab3fd9e4c754e39fcc71a
-
SHA1
dc8a255ba93bc059934938ccbfd2b86a94110750
-
SHA256
05a6a53ee7e31e73c45a26110ba7b50c3aaa380cad2fa9ea887b1b8c1743ee3d
-
SHA512
92adeb7521a68f0249027198dff3b6899e786e997786ddb2dcdd733938a48863d73d1f7ec179ae928e7af3ce31f177efa8c96015aede0c552af13f0aff6a04ac
Static task
static1
Malware Config
Extracted
redline
noname
185.215.113.29:20819
Targets
-
-
Target
05a6a53ee7e31e73c45a26110ba7b50c3aaa380cad2fa9ea887b1b8c1743ee3d
-
Size
380KB
-
MD5
c3c0f9d8625ab3fd9e4c754e39fcc71a
-
SHA1
dc8a255ba93bc059934938ccbfd2b86a94110750
-
SHA256
05a6a53ee7e31e73c45a26110ba7b50c3aaa380cad2fa9ea887b1b8c1743ee3d
-
SHA512
92adeb7521a68f0249027198dff3b6899e786e997786ddb2dcdd733938a48863d73d1f7ec179ae928e7af3ce31f177efa8c96015aede0c552af13f0aff6a04ac
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-