General
-
Target
9a2bd6e0cb98893a52ea1b912ebfca5b4eb5e5106b900e5580ab256542118bdd
-
Size
372KB
-
Sample
220131-cm6v5adeer
-
MD5
4225550046da958cd31e8bccc0c6ba1d
-
SHA1
1f6dafcbf20a6767d69da173c3fabb2171f5b421
-
SHA256
9a2bd6e0cb98893a52ea1b912ebfca5b4eb5e5106b900e5580ab256542118bdd
-
SHA512
e0db47acbadc401f971ab36fd4a243fe758ae34d58af6a03dfc5a40ed04842c08f551703fb4d695cb9bc7ce58000cd398a5a690cd81e4390cc190df11770504d
Static task
static1
Malware Config
Extracted
redline
noname
185.215.113.29:20819
Targets
-
-
Target
9a2bd6e0cb98893a52ea1b912ebfca5b4eb5e5106b900e5580ab256542118bdd
-
Size
372KB
-
MD5
4225550046da958cd31e8bccc0c6ba1d
-
SHA1
1f6dafcbf20a6767d69da173c3fabb2171f5b421
-
SHA256
9a2bd6e0cb98893a52ea1b912ebfca5b4eb5e5106b900e5580ab256542118bdd
-
SHA512
e0db47acbadc401f971ab36fd4a243fe758ae34d58af6a03dfc5a40ed04842c08f551703fb4d695cb9bc7ce58000cd398a5a690cd81e4390cc190df11770504d
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-