General
-
Target
92a6ec7f2e29ba5b68c6baa188ad6c80b13cd651b5212376025ea1845c9a0841
-
Size
399KB
-
Sample
220130-vdw9fafeg4
-
MD5
a823fd2cdda31e16880b39879be72693
-
SHA1
7dd0d9d1f04cda10886f47efbd73113235112d14
-
SHA256
92a6ec7f2e29ba5b68c6baa188ad6c80b13cd651b5212376025ea1845c9a0841
-
SHA512
d74580022ed40c008a9955d00075555281b403867d33280d71f91ff9bd3bc657738f5f016ede0c4959a0724f9411acc7925724bdf560863f742f7c3f4c60cbc0
Static task
static1
Behavioral task
behavioral1
Sample
92a6ec7f2e29ba5b68c6baa188ad6c80b13cd651b5212376025ea1845c9a0841.exe
Resource
win10-en-20211208
Malware Config
Extracted
redline
ruzkiKAKOYTO
185.215.113.29:20819
Targets
-
-
Target
92a6ec7f2e29ba5b68c6baa188ad6c80b13cd651b5212376025ea1845c9a0841
-
Size
399KB
-
MD5
a823fd2cdda31e16880b39879be72693
-
SHA1
7dd0d9d1f04cda10886f47efbd73113235112d14
-
SHA256
92a6ec7f2e29ba5b68c6baa188ad6c80b13cd651b5212376025ea1845c9a0841
-
SHA512
d74580022ed40c008a9955d00075555281b403867d33280d71f91ff9bd3bc657738f5f016ede0c4959a0724f9411acc7925724bdf560863f742f7c3f4c60cbc0
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-