General
-
Target
f7323d60f10cbc461c99d18ab32351bcbb648b15f585137459df4f76e9dd2316
-
Size
337KB
-
Sample
230331-ewkqcshh5y
-
MD5
ef0d180595bbfed4c58bec756f0e724e
-
SHA1
3ca5ecf1bf1d348216b3ffb5309e682c6fba39b7
-
SHA256
f7323d60f10cbc461c99d18ab32351bcbb648b15f585137459df4f76e9dd2316
-
SHA512
1b672298e1c5f66e48fac9021be51680aca3db4b6a5a75afb4dbed08e704d22f1cd19784b4da167cc4981858216d76245ffb5c407777e39dee1be91358a1bd33
-
SSDEEP
6144:plSG3fWwXmzq/RTQDlW3n2phx98UrmjxcZvKFpMhv36hdd4dBmsf:iGvWwMKFAl4n2pK0m7MV6hdd4dUs
Static task
static1
Malware Config
Extracted
redline
frtrack
francestracking.com:80
-
auth_value
f2f94b780071d26409283a3478312faf
Targets
-
-
Target
f7323d60f10cbc461c99d18ab32351bcbb648b15f585137459df4f76e9dd2316
-
Size
337KB
-
MD5
ef0d180595bbfed4c58bec756f0e724e
-
SHA1
3ca5ecf1bf1d348216b3ffb5309e682c6fba39b7
-
SHA256
f7323d60f10cbc461c99d18ab32351bcbb648b15f585137459df4f76e9dd2316
-
SHA512
1b672298e1c5f66e48fac9021be51680aca3db4b6a5a75afb4dbed08e704d22f1cd19784b4da167cc4981858216d76245ffb5c407777e39dee1be91358a1bd33
-
SSDEEP
6144:plSG3fWwXmzq/RTQDlW3n2phx98UrmjxcZvKFpMhv36hdd4dBmsf:iGvWwMKFAl4n2pK0m7MV6hdd4dUs
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-