General
-
Target
ad7217cd92623e352a8f1b0cc110e54515cd9393c39ca5ec0df5bba9dbce27e1
-
Size
462KB
-
Sample
220128-y5m2macfek
-
MD5
87f92253fefdaaecf2c718f7249b1367
-
SHA1
df1cf13dfbaf09df0c821c1ef9e133c9fca4c4b2
-
SHA256
ad7217cd92623e352a8f1b0cc110e54515cd9393c39ca5ec0df5bba9dbce27e1
-
SHA512
440c469b439072778e161d8c969a4c555321f4cee80ccee7e838069859cd6b798371ae95338c6d03f6e9be7abe67f2c5d60a2c129b490d3457e28ab36979e49e
Static task
static1
Behavioral task
behavioral1
Sample
ad7217cd92623e352a8f1b0cc110e54515cd9393c39ca5ec0df5bba9dbce27e1.exe
Resource
win10-en-20211208
Malware Config
Extracted
redline
ruzkiKAKOYTO
185.215.113.29:20819
Targets
-
-
Target
ad7217cd92623e352a8f1b0cc110e54515cd9393c39ca5ec0df5bba9dbce27e1
-
Size
462KB
-
MD5
87f92253fefdaaecf2c718f7249b1367
-
SHA1
df1cf13dfbaf09df0c821c1ef9e133c9fca4c4b2
-
SHA256
ad7217cd92623e352a8f1b0cc110e54515cd9393c39ca5ec0df5bba9dbce27e1
-
SHA512
440c469b439072778e161d8c969a4c555321f4cee80ccee7e838069859cd6b798371ae95338c6d03f6e9be7abe67f2c5d60a2c129b490d3457e28ab36979e49e
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-