General
-
Target
file.exe
-
Size
418KB
-
Sample
230206-sef8hahg6s
-
MD5
c5ecd30eb1d0207715c480320be7c37f
-
SHA1
9725981c9190dfbe2060ce8578ef11e3289c587a
-
SHA256
78864c02bb8e89a18e6b8a93468143f6a0a1ccad6e798e650b5895750b9db06d
-
SHA512
8cd7f59ce8ea91ba9c20ebefd7a0e07fa99d5667cc7b122920f62cd66df1939fcda6656641ee00a3e7d54d1315d203a921b5b08c0072da55ff0fb5b905bc31cd
-
SSDEEP
6144:agtLyAEfVcL87CgvQADcjrcFEbFao8s8saT0Yfnhid6KSqVl/ClRk:a4WAExG0Qec0EbSsaQYfnhi0eHem
Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20221111-en
Malware Config
Targets
-
-
Target
file.exe
-
Size
418KB
-
MD5
c5ecd30eb1d0207715c480320be7c37f
-
SHA1
9725981c9190dfbe2060ce8578ef11e3289c587a
-
SHA256
78864c02bb8e89a18e6b8a93468143f6a0a1ccad6e798e650b5895750b9db06d
-
SHA512
8cd7f59ce8ea91ba9c20ebefd7a0e07fa99d5667cc7b122920f62cd66df1939fcda6656641ee00a3e7d54d1315d203a921b5b08c0072da55ff0fb5b905bc31cd
-
SSDEEP
6144:agtLyAEfVcL87CgvQADcjrcFEbFao8s8saT0Yfnhid6KSqVl/ClRk:a4WAExG0Qec0EbSsaQYfnhi0eHem
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-