General
-
Target
552aee85ce0218f98f82f01eb6ce6443f4a0fa639dacdb765a10c6a5cdef257e
-
Size
330KB
-
Sample
220127-nvt23sccd3
-
MD5
38dc9a14d4df83a0d9ca119501611ee1
-
SHA1
f359950816fc5f6acd30fa67449cbb8516fddb55
-
SHA256
552aee85ce0218f98f82f01eb6ce6443f4a0fa639dacdb765a10c6a5cdef257e
-
SHA512
51a5f8345237e0375f331bb8618cfed4f435e4e987793f14e0c3752108b8f93857591cd16ae12860acaafef4d7fb45f1cd3bc212815f06961cfd8a0ea6cb9cfa
Static task
static1
Malware Config
Extracted
redline
noname
185.215.113.29:20819
Targets
-
-
Target
552aee85ce0218f98f82f01eb6ce6443f4a0fa639dacdb765a10c6a5cdef257e
-
Size
330KB
-
MD5
38dc9a14d4df83a0d9ca119501611ee1
-
SHA1
f359950816fc5f6acd30fa67449cbb8516fddb55
-
SHA256
552aee85ce0218f98f82f01eb6ce6443f4a0fa639dacdb765a10c6a5cdef257e
-
SHA512
51a5f8345237e0375f331bb8618cfed4f435e4e987793f14e0c3752108b8f93857591cd16ae12860acaafef4d7fb45f1cd3bc212815f06961cfd8a0ea6cb9cfa
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-