General
-
Target
3c75ebb90d704f795846fecbfb1537457c38f731bd08cc116a008d1bd9a2f286
-
Size
326KB
-
Sample
220211-cx6m4sbdgl
-
MD5
98c1dd091b15fa595e6f3b5653f97b08
-
SHA1
88e256f473e3ad350929d5a6930d55e529898ad2
-
SHA256
3c75ebb90d704f795846fecbfb1537457c38f731bd08cc116a008d1bd9a2f286
-
SHA512
b7cb42ef585249f55f32aad39d5400c65b3adfccd676aca015773642e3d60304b7ca48dd0c9a49792c85f45fc89037361c3753359692bc449edaaa12aaeb37b6
Static task
static1
Malware Config
Extracted
redline
noname
185.215.113.29:20819
-
auth_value
ee92d883673b7156fdd66cac5fc8d2d0
Targets
-
-
Target
3c75ebb90d704f795846fecbfb1537457c38f731bd08cc116a008d1bd9a2f286
-
Size
326KB
-
MD5
98c1dd091b15fa595e6f3b5653f97b08
-
SHA1
88e256f473e3ad350929d5a6930d55e529898ad2
-
SHA256
3c75ebb90d704f795846fecbfb1537457c38f731bd08cc116a008d1bd9a2f286
-
SHA512
b7cb42ef585249f55f32aad39d5400c65b3adfccd676aca015773642e3d60304b7ca48dd0c9a49792c85f45fc89037361c3753359692bc449edaaa12aaeb37b6
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-