General
-
Target
2b3d2bf36dfd8749bf18fe549b0b154080b4a8597499acf431fe3e3d1dd5e616
-
Size
462KB
-
Sample
220128-pgzk3scccr
-
MD5
c06bee565223cde0037ae4075fd89a1c
-
SHA1
eda60b989c63b3d98bec8dbd80e1fed1230bbed7
-
SHA256
2b3d2bf36dfd8749bf18fe549b0b154080b4a8597499acf431fe3e3d1dd5e616
-
SHA512
3d9a645a6aaf5b8c1b4d73c813f96795724134f7aff8613d57224c3483bf090e45cd9f1c602a7f321d6793746a6f28c2382bb2caa3b0c5eb1e18da7e9d364d52
Static task
static1
Malware Config
Extracted
redline
noname
185.215.113.29:20819
Targets
-
-
Target
2b3d2bf36dfd8749bf18fe549b0b154080b4a8597499acf431fe3e3d1dd5e616
-
Size
462KB
-
MD5
c06bee565223cde0037ae4075fd89a1c
-
SHA1
eda60b989c63b3d98bec8dbd80e1fed1230bbed7
-
SHA256
2b3d2bf36dfd8749bf18fe549b0b154080b4a8597499acf431fe3e3d1dd5e616
-
SHA512
3d9a645a6aaf5b8c1b4d73c813f96795724134f7aff8613d57224c3483bf090e45cd9f1c602a7f321d6793746a6f28c2382bb2caa3b0c5eb1e18da7e9d364d52
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-