General
-
Target
10cf2e5844c40a51ae78e1bb8aba9d031690285e6988ced89ff0cb741e94497f
-
Size
417KB
-
Sample
220201-gx2flshhcl
-
MD5
929e188d989eb2d9f5876390a610de94
-
SHA1
d6e38e526ca197423fcc43dd016b7aa3ecc5f6c5
-
SHA256
10cf2e5844c40a51ae78e1bb8aba9d031690285e6988ced89ff0cb741e94497f
-
SHA512
500ee23c50cae2ac5c70370715558abeeeb21344958295cad73f9a79a40b99b80122e558c18a6f2e95942f7c143d49a3f2db4c32e75002566c10b0ef2cfe1ad1
Static task
static1
Behavioral task
behavioral1
Sample
10cf2e5844c40a51ae78e1bb8aba9d031690285e6988ced89ff0cb741e94497f.exe
Resource
win10-en-20211208
Malware Config
Extracted
redline
ruzkiKAKOYTO
185.215.113.29:20819
Targets
-
-
Target
10cf2e5844c40a51ae78e1bb8aba9d031690285e6988ced89ff0cb741e94497f
-
Size
417KB
-
MD5
929e188d989eb2d9f5876390a610de94
-
SHA1
d6e38e526ca197423fcc43dd016b7aa3ecc5f6c5
-
SHA256
10cf2e5844c40a51ae78e1bb8aba9d031690285e6988ced89ff0cb741e94497f
-
SHA512
500ee23c50cae2ac5c70370715558abeeeb21344958295cad73f9a79a40b99b80122e558c18a6f2e95942f7c143d49a3f2db4c32e75002566c10b0ef2cfe1ad1
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-