General
-
Target
b2ac037d43b8d8135b6f7a2392f6f9a6c56bf276fc7c0cf41acf99f42950e2ef
-
Size
389KB
-
Sample
220626-bejj7abbbj
-
MD5
0a29b330e439e4ff0c05133b1efd09ea
-
SHA1
4b8ad70abce97b71a52a55ec0101ee1679e4758c
-
SHA256
b2ac037d43b8d8135b6f7a2392f6f9a6c56bf276fc7c0cf41acf99f42950e2ef
-
SHA512
cc6809646cd95f75c54f118f11084480a3d89e506c2cb3d64d30738d156e3925f208f92e08dd14d0b351583252d94bf9c9547525d17b04561d35275f5dfebc78
Static task
static1
Malware Config
Extracted
redline
RUZKI
193.106.191.246:23196
-
auth_value
121027c094f768a0a0e9b562f6417952
Targets
-
-
Target
b2ac037d43b8d8135b6f7a2392f6f9a6c56bf276fc7c0cf41acf99f42950e2ef
-
Size
389KB
-
MD5
0a29b330e439e4ff0c05133b1efd09ea
-
SHA1
4b8ad70abce97b71a52a55ec0101ee1679e4758c
-
SHA256
b2ac037d43b8d8135b6f7a2392f6f9a6c56bf276fc7c0cf41acf99f42950e2ef
-
SHA512
cc6809646cd95f75c54f118f11084480a3d89e506c2cb3d64d30738d156e3925f208f92e08dd14d0b351583252d94bf9c9547525d17b04561d35275f5dfebc78
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-