General
-
Target
783a99dfd15678d26ec74ed78a3c3f75289002962cb65870ab85cc02c7d72f88
-
Size
385KB
-
Sample
220212-qlstrscfh3
-
MD5
1e3e532a1b2560375b7228661292e012
-
SHA1
4e8298dae2d8c3703037976ea5d74f0eddaff6c6
-
SHA256
783a99dfd15678d26ec74ed78a3c3f75289002962cb65870ab85cc02c7d72f88
-
SHA512
17fd7d9900621b3b11d239645a25afacf14dc769d015b8b90f154e682e83e6af22013424220537555c23f05504e9a821f15c4189f3e7c889dece03f79dffcbc8
Static task
static1
Malware Config
Extracted
redline
noname
185.215.113.29:20819
-
auth_value
ee92d883673b7156fdd66cac5fc8d2d0
Targets
-
-
Target
783a99dfd15678d26ec74ed78a3c3f75289002962cb65870ab85cc02c7d72f88
-
Size
385KB
-
MD5
1e3e532a1b2560375b7228661292e012
-
SHA1
4e8298dae2d8c3703037976ea5d74f0eddaff6c6
-
SHA256
783a99dfd15678d26ec74ed78a3c3f75289002962cb65870ab85cc02c7d72f88
-
SHA512
17fd7d9900621b3b11d239645a25afacf14dc769d015b8b90f154e682e83e6af22013424220537555c23f05504e9a821f15c4189f3e7c889dece03f79dffcbc8
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-