General
-
Target
f9c17a42a06081abade4c09c88d0dd1b8d865a0555ee8d28dec89b40faa5ba66
-
Size
372KB
-
Sample
220131-kcrx8agghm
-
MD5
deeb707ee2749f603f21a3194b5ce8ea
-
SHA1
60100c84064712b92376b92298f014cbff6a3a88
-
SHA256
f9c17a42a06081abade4c09c88d0dd1b8d865a0555ee8d28dec89b40faa5ba66
-
SHA512
d33b05c84960b7392b0d8c9986c97f05116173e3a24351fa53820890ea306971fced90de08d3b9bce2d387bf4d63d66442d0ca9800a1caabe6b633388ad09b63
Static task
static1
Behavioral task
behavioral1
Sample
f9c17a42a06081abade4c09c88d0dd1b8d865a0555ee8d28dec89b40faa5ba66.exe
Resource
win10-en-20211208
Malware Config
Extracted
redline
ruzkiKAKOYTO
185.215.113.29:20819
Targets
-
-
Target
f9c17a42a06081abade4c09c88d0dd1b8d865a0555ee8d28dec89b40faa5ba66
-
Size
372KB
-
MD5
deeb707ee2749f603f21a3194b5ce8ea
-
SHA1
60100c84064712b92376b92298f014cbff6a3a88
-
SHA256
f9c17a42a06081abade4c09c88d0dd1b8d865a0555ee8d28dec89b40faa5ba66
-
SHA512
d33b05c84960b7392b0d8c9986c97f05116173e3a24351fa53820890ea306971fced90de08d3b9bce2d387bf4d63d66442d0ca9800a1caabe6b633388ad09b63
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-