General
-
Target
ad20867cdb7c79f58f4e46f56cfe21fb5053010f7743e60b925730b4f8d5207a
-
Size
340KB
-
Sample
220210-tve6taaebm
-
MD5
a6f866a5f220adb221a4898338fc4647
-
SHA1
bee0540187d9032dc74f1eed9300dfe4b35db9c3
-
SHA256
ad20867cdb7c79f58f4e46f56cfe21fb5053010f7743e60b925730b4f8d5207a
-
SHA512
5f9c9d8fb1bec828bef145a30a7d508bba3a6dca5e3c8a9b3827d5c05548b745a43e111cb8f66717eff4e6d4652e7901251ae783f514e783b27708c36e4ffc2d
Static task
static1
Malware Config
Extracted
redline
noname
185.215.113.29:20819
-
auth_value
ee92d883673b7156fdd66cac5fc8d2d0
Targets
-
-
Target
ad20867cdb7c79f58f4e46f56cfe21fb5053010f7743e60b925730b4f8d5207a
-
Size
340KB
-
MD5
a6f866a5f220adb221a4898338fc4647
-
SHA1
bee0540187d9032dc74f1eed9300dfe4b35db9c3
-
SHA256
ad20867cdb7c79f58f4e46f56cfe21fb5053010f7743e60b925730b4f8d5207a
-
SHA512
5f9c9d8fb1bec828bef145a30a7d508bba3a6dca5e3c8a9b3827d5c05548b745a43e111cb8f66717eff4e6d4652e7901251ae783f514e783b27708c36e4ffc2d
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-