General
-
Target
ea6d62a189240369f269db2d7210cf37a727eef30cda7e091260ad6e81d555bc
-
Size
340KB
-
Sample
220210-mscjksghgj
-
MD5
6f93da45cd0ade7b46544a6a13a14946
-
SHA1
e7a0399716c49117ba96835a23e6b7b9193b6b87
-
SHA256
ea6d62a189240369f269db2d7210cf37a727eef30cda7e091260ad6e81d555bc
-
SHA512
8098bf652c42b8a4524ba42d9cc2e4c76288b239510c9abf692fa0a8288f24edfa046fcbffc1e8246e1b377f4d56f89bb2f0f78f033a1110a10fb7c71662c309
Static task
static1
Malware Config
Extracted
redline
noname
185.215.113.29:20819
Targets
-
-
Target
ea6d62a189240369f269db2d7210cf37a727eef30cda7e091260ad6e81d555bc
-
Size
340KB
-
MD5
6f93da45cd0ade7b46544a6a13a14946
-
SHA1
e7a0399716c49117ba96835a23e6b7b9193b6b87
-
SHA256
ea6d62a189240369f269db2d7210cf37a727eef30cda7e091260ad6e81d555bc
-
SHA512
8098bf652c42b8a4524ba42d9cc2e4c76288b239510c9abf692fa0a8288f24edfa046fcbffc1e8246e1b377f4d56f89bb2f0f78f033a1110a10fb7c71662c309
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-