General
-
Target
d5eb05e25a95c49f31f5f5fdbe50b437148498073026630e2243e9d1d2bd8f4a
-
Size
417KB
-
Sample
220201-bx2tgseger
-
MD5
e126496a236938e7c1c4c95d358f3594
-
SHA1
f6c9683f0cd508163a9a81d3aa9a53cdcf95db93
-
SHA256
d5eb05e25a95c49f31f5f5fdbe50b437148498073026630e2243e9d1d2bd8f4a
-
SHA512
de51056003164a030e76ae49a80d3f413f068999c0a813110bd31baa05ea75b7a257bce468e10a46f51928ac0bb1a9b5a8e9b04ddf5b467df929b8161739dd28
Static task
static1
Malware Config
Extracted
redline
noname
185.215.113.29:20819
Targets
-
-
Target
d5eb05e25a95c49f31f5f5fdbe50b437148498073026630e2243e9d1d2bd8f4a
-
Size
417KB
-
MD5
e126496a236938e7c1c4c95d358f3594
-
SHA1
f6c9683f0cd508163a9a81d3aa9a53cdcf95db93
-
SHA256
d5eb05e25a95c49f31f5f5fdbe50b437148498073026630e2243e9d1d2bd8f4a
-
SHA512
de51056003164a030e76ae49a80d3f413f068999c0a813110bd31baa05ea75b7a257bce468e10a46f51928ac0bb1a9b5a8e9b04ddf5b467df929b8161739dd28
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-