General
-
Target
914954df29df8f646c89afd2a8340abf2037f02e6de05a3090eca6357d47a058
-
Size
378KB
-
Sample
220209-tv14aabbaq
-
MD5
e0057ff48dde7c87375564fc3ac17838
-
SHA1
fb17f7111b06c0a0cd00bf6639e59de48202e48c
-
SHA256
914954df29df8f646c89afd2a8340abf2037f02e6de05a3090eca6357d47a058
-
SHA512
252c9aa63cb8fe242de4edd3c4667ddb07f28a73cf870c153193ef2b77b23ccd1130568fdfe58498ae9209853cb88db27306b7df520dc09469ce6ae5ecf5348d
Static task
static1
Malware Config
Extracted
redline
noname
185.215.113.29:20819
Targets
-
-
Target
914954df29df8f646c89afd2a8340abf2037f02e6de05a3090eca6357d47a058
-
Size
378KB
-
MD5
e0057ff48dde7c87375564fc3ac17838
-
SHA1
fb17f7111b06c0a0cd00bf6639e59de48202e48c
-
SHA256
914954df29df8f646c89afd2a8340abf2037f02e6de05a3090eca6357d47a058
-
SHA512
252c9aa63cb8fe242de4edd3c4667ddb07f28a73cf870c153193ef2b77b23ccd1130568fdfe58498ae9209853cb88db27306b7df520dc09469ce6ae5ecf5348d
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-