General
-
Target
467f2c785270735950157c5a0821d308fb4ff4e14e1f60a74b8e5e747e2f4b1c
-
Size
384KB
-
Sample
220212-mxjtfsbde3
-
MD5
bdac9ec665ec8d049d71e43cb45a324c
-
SHA1
62feb2f458f2408527c633a1c25e15c52b138116
-
SHA256
467f2c785270735950157c5a0821d308fb4ff4e14e1f60a74b8e5e747e2f4b1c
-
SHA512
5ec2007e7c307d2d2d464998c1a1e632229f8a22b06822bd2c800a2201c550f202ea0d5657358df6a7ee85fb3a5fd0cffb31332a70065fae95070bd0487b8f5e
Static task
static1
Malware Config
Extracted
redline
noname
185.215.113.29:20819
-
auth_value
ee92d883673b7156fdd66cac5fc8d2d0
Targets
-
-
Target
467f2c785270735950157c5a0821d308fb4ff4e14e1f60a74b8e5e747e2f4b1c
-
Size
384KB
-
MD5
bdac9ec665ec8d049d71e43cb45a324c
-
SHA1
62feb2f458f2408527c633a1c25e15c52b138116
-
SHA256
467f2c785270735950157c5a0821d308fb4ff4e14e1f60a74b8e5e747e2f4b1c
-
SHA512
5ec2007e7c307d2d2d464998c1a1e632229f8a22b06822bd2c800a2201c550f202ea0d5657358df6a7ee85fb3a5fd0cffb31332a70065fae95070bd0487b8f5e
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-