General
-
Target
a79dab24307f03581aecf9ca426bb84d3cd4506228b62e7512b4676166ec0b88
-
Size
331KB
-
Sample
220127-n5t5tscbgj
-
MD5
5e4b1fe1b27688641c15b8debf43a12c
-
SHA1
b40bca895a5ec5e543922236ed80f5fd25e404ff
-
SHA256
a79dab24307f03581aecf9ca426bb84d3cd4506228b62e7512b4676166ec0b88
-
SHA512
e28ca7b64f5f7f0e1567dac06a15888bd019e5a6b0ce67b6951c7b2a41754011cf8f32fa1d9e4f88233205103063845c3f48aa05f1288ebaeb5fa60d7d383888
Static task
static1
Behavioral task
behavioral1
Sample
a79dab24307f03581aecf9ca426bb84d3cd4506228b62e7512b4676166ec0b88.exe
Resource
win10-en-20211208
Malware Config
Extracted
redline
ruzkiKAKOYTO
185.215.113.29:20819
Targets
-
-
Target
a79dab24307f03581aecf9ca426bb84d3cd4506228b62e7512b4676166ec0b88
-
Size
331KB
-
MD5
5e4b1fe1b27688641c15b8debf43a12c
-
SHA1
b40bca895a5ec5e543922236ed80f5fd25e404ff
-
SHA256
a79dab24307f03581aecf9ca426bb84d3cd4506228b62e7512b4676166ec0b88
-
SHA512
e28ca7b64f5f7f0e1567dac06a15888bd019e5a6b0ce67b6951c7b2a41754011cf8f32fa1d9e4f88233205103063845c3f48aa05f1288ebaeb5fa60d7d383888
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-