General
-
Target
bc8849f1026b43e84f6a5c69cfba8b154da3a95c230daf974c3f453a08d7f68e
-
Size
375KB
-
Sample
230312-d7673aee7x
-
MD5
ed44ce339b5e5cd86410c854cda08ea0
-
SHA1
2b97ec6650c0da3bc40d3cb7f1a8eafacd80f3a4
-
SHA256
bc8849f1026b43e84f6a5c69cfba8b154da3a95c230daf974c3f453a08d7f68e
-
SHA512
e0f42adbab26e05ccf2664ba38a2cdc84919cefbfdf8c01a133a22a1b27d852489d0264a1e8771b6d3bd0158edb256154423868018ba4f9c4603f2d96e19c719
-
SSDEEP
6144:u+qaftue38NbMIDMnoa7drndiSP9XNUq9Y6DGr6/:AYtbtUMnD7FdzVXS6D1
Malware Config
Targets
-
-
Target
bc8849f1026b43e84f6a5c69cfba8b154da3a95c230daf974c3f453a08d7f68e
-
Size
375KB
-
MD5
ed44ce339b5e5cd86410c854cda08ea0
-
SHA1
2b97ec6650c0da3bc40d3cb7f1a8eafacd80f3a4
-
SHA256
bc8849f1026b43e84f6a5c69cfba8b154da3a95c230daf974c3f453a08d7f68e
-
SHA512
e0f42adbab26e05ccf2664ba38a2cdc84919cefbfdf8c01a133a22a1b27d852489d0264a1e8771b6d3bd0158edb256154423868018ba4f9c4603f2d96e19c719
-
SSDEEP
6144:u+qaftue38NbMIDMnoa7drndiSP9XNUq9Y6DGr6/:AYtbtUMnD7FdzVXS6D1
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-