General
-
Target
eb808048d2023496019b125f155cc6c5a1a42d6af4833654389966ec28103135
-
Size
338KB
-
Sample
220210-c7bkqacce3
-
MD5
b2b5183eff172b7ff6cb8c7062cb4612
-
SHA1
efb12845999397f77ed803638f8f9491158fdb69
-
SHA256
eb808048d2023496019b125f155cc6c5a1a42d6af4833654389966ec28103135
-
SHA512
3ad23d0c01e3cda8b07f558ea2036ba0fded7aec7305a593c3edbe161e9ce980b946bf2bec74b1fa17f4d8883c9aac22af5907ab90fcd1716e69f72e4eb98647
Static task
static1
Malware Config
Extracted
redline
noname
185.215.113.29:20819
Targets
-
-
Target
eb808048d2023496019b125f155cc6c5a1a42d6af4833654389966ec28103135
-
Size
338KB
-
MD5
b2b5183eff172b7ff6cb8c7062cb4612
-
SHA1
efb12845999397f77ed803638f8f9491158fdb69
-
SHA256
eb808048d2023496019b125f155cc6c5a1a42d6af4833654389966ec28103135
-
SHA512
3ad23d0c01e3cda8b07f558ea2036ba0fded7aec7305a593c3edbe161e9ce980b946bf2bec74b1fa17f4d8883c9aac22af5907ab90fcd1716e69f72e4eb98647
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-