General
-
Target
798ac3d31c8c61c28e15a2bc07461192858f4cb561aed81264f8582d88d1278b
-
Size
381KB
-
Sample
220127-j734asaah4
-
MD5
fcfc15aaa60f99f62ab6ac448ab9ef4b
-
SHA1
fd077a7afb2442adca5243435b7c65b7babb22e8
-
SHA256
798ac3d31c8c61c28e15a2bc07461192858f4cb561aed81264f8582d88d1278b
-
SHA512
66e1ae281670451b94b3660666e239d78809bf99db03bd9a6f1548a414c363aab248eedf93d91c65bee8a1fd0c8d7c840b8bc89e200d5bb9ef37767285650618
Malware Config
Extracted
redline
noname
185.215.113.29:20819
Targets
-
-
Target
798ac3d31c8c61c28e15a2bc07461192858f4cb561aed81264f8582d88d1278b
-
Size
381KB
-
MD5
fcfc15aaa60f99f62ab6ac448ab9ef4b
-
SHA1
fd077a7afb2442adca5243435b7c65b7babb22e8
-
SHA256
798ac3d31c8c61c28e15a2bc07461192858f4cb561aed81264f8582d88d1278b
-
SHA512
66e1ae281670451b94b3660666e239d78809bf99db03bd9a6f1548a414c363aab248eedf93d91c65bee8a1fd0c8d7c840b8bc89e200d5bb9ef37767285650618
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-