General
-
Target
61ecfd6f186560258a9a94c25fc923ff142467fe7972f507098a43f2494b0c13
-
Size
373KB
-
Sample
220130-3f7ryscafk
-
MD5
d8df2de0964ccdc940daf96d05935de1
-
SHA1
ee52dc2977dc1db138548e0416f2b2749f904fb5
-
SHA256
61ecfd6f186560258a9a94c25fc923ff142467fe7972f507098a43f2494b0c13
-
SHA512
f20e5afcf8603a24d929c1599c16cce737dedd8cc1508ec560bd1b5cd9549ac9875f2f1beed93b62c5707f953f0dc05b0eb1e5b0a5a1fcfff7a5b80250be46bd
Static task
static1
Behavioral task
behavioral1
Sample
61ecfd6f186560258a9a94c25fc923ff142467fe7972f507098a43f2494b0c13.exe
Resource
win10-en-20211208
Malware Config
Extracted
redline
ruzkiKAKOYTO
185.215.113.29:20819
Targets
-
-
Target
61ecfd6f186560258a9a94c25fc923ff142467fe7972f507098a43f2494b0c13
-
Size
373KB
-
MD5
d8df2de0964ccdc940daf96d05935de1
-
SHA1
ee52dc2977dc1db138548e0416f2b2749f904fb5
-
SHA256
61ecfd6f186560258a9a94c25fc923ff142467fe7972f507098a43f2494b0c13
-
SHA512
f20e5afcf8603a24d929c1599c16cce737dedd8cc1508ec560bd1b5cd9549ac9875f2f1beed93b62c5707f953f0dc05b0eb1e5b0a5a1fcfff7a5b80250be46bd
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-