General
-
Target
f938105f711a7813c9592b7e8e4344de83cb2432dd42bc19288672106db4d3be
-
Size
417KB
-
Sample
220201-fn3fwahff2
-
MD5
b770b4606f3af3084b10af4cc9c7c4dd
-
SHA1
3ed7a9c3ffadd9703c4e0ba176a2d1e5c3c7a46c
-
SHA256
f938105f711a7813c9592b7e8e4344de83cb2432dd42bc19288672106db4d3be
-
SHA512
ec452182e0dcab94f8b74120d0817ea965b7440cb36d44dabd9acfd4695a2561837c27c7a53ea1569fa3a1a92f71cb6dc2f8fc1615f0653c1260bd6e9697fa79
Static task
static1
Behavioral task
behavioral1
Sample
f938105f711a7813c9592b7e8e4344de83cb2432dd42bc19288672106db4d3be.exe
Resource
win10-en-20211208
Malware Config
Extracted
redline
ruzkiKAKOYTO
185.215.113.29:20819
Targets
-
-
Target
f938105f711a7813c9592b7e8e4344de83cb2432dd42bc19288672106db4d3be
-
Size
417KB
-
MD5
b770b4606f3af3084b10af4cc9c7c4dd
-
SHA1
3ed7a9c3ffadd9703c4e0ba176a2d1e5c3c7a46c
-
SHA256
f938105f711a7813c9592b7e8e4344de83cb2432dd42bc19288672106db4d3be
-
SHA512
ec452182e0dcab94f8b74120d0817ea965b7440cb36d44dabd9acfd4695a2561837c27c7a53ea1569fa3a1a92f71cb6dc2f8fc1615f0653c1260bd6e9697fa79
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-