General
-
Target
8037734168aed8d9b92cb8a7fe80072b4c2abbb3ca742921a7399722fcaef443
-
Size
284KB
-
Sample
230320-vcw72see57
-
MD5
900f97bbedeb2f9f850c28a8df0c7cc5
-
SHA1
4a025aafc3f40dff9ee50955a90c1cb6044be922
-
SHA256
8037734168aed8d9b92cb8a7fe80072b4c2abbb3ca742921a7399722fcaef443
-
SHA512
3e74ca87929a04e61b03bd6ef57172dba69e08cd3d7c0f60feaf68ce27715e7c765e801b963cfe21c579aeb16b099284d9627237445f483fbb061eaf41ab6685
-
SSDEEP
6144:9IAtPWI4DH3u7acynot9FnGnfX4cZ3cjcx8Sy9:9IAwI4DXIac2oDInv4cZ3ISy
Static task
static1
Malware Config
Extracted
redline
fronx2
fronxtracking.com:80
-
auth_value
0a4100df2644a6a6582137d2da2c8bd1
Targets
-
-
Target
8037734168aed8d9b92cb8a7fe80072b4c2abbb3ca742921a7399722fcaef443
-
Size
284KB
-
MD5
900f97bbedeb2f9f850c28a8df0c7cc5
-
SHA1
4a025aafc3f40dff9ee50955a90c1cb6044be922
-
SHA256
8037734168aed8d9b92cb8a7fe80072b4c2abbb3ca742921a7399722fcaef443
-
SHA512
3e74ca87929a04e61b03bd6ef57172dba69e08cd3d7c0f60feaf68ce27715e7c765e801b963cfe21c579aeb16b099284d9627237445f483fbb061eaf41ab6685
-
SSDEEP
6144:9IAtPWI4DH3u7acynot9FnGnfX4cZ3cjcx8Sy9:9IAwI4DXIac2oDInv4cZ3ISy
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-