General
-
Target
0x00190000000124a1-83.dat
-
Size
172KB
-
Sample
230605-n4swdagh9x
-
MD5
45da8a914cedfeab596ef8651b33599b
-
SHA1
be96c30cc9952c337f15ba9db86810595917ce13
-
SHA256
fbdaf66fa8507628efaa88ba789c14ffb3c3fc83d03e7184a73e7f8fa0b6734e
-
SHA512
0ade6977b1c95effcabce1e7bb1be1f5ca7e4dab1feacfd3ebffa2e827fd2fb5f5b4164a52559f2813b0eabc8f12461d1e79956a80df4d87bf2db92ded8cf1b5
-
SSDEEP
3072:G+io48UwXVLCUD6xNZcJizueaE7i8e8h9:FioZNk1aE7i
Malware Config
Extracted
redline
maxi
83.97.73.126:19046
-
auth_value
6a3f22e5f4209b056a3fd330dc71956a
Targets
-
-
Target
0x00190000000124a1-83.dat
-
Size
172KB
-
MD5
45da8a914cedfeab596ef8651b33599b
-
SHA1
be96c30cc9952c337f15ba9db86810595917ce13
-
SHA256
fbdaf66fa8507628efaa88ba789c14ffb3c3fc83d03e7184a73e7f8fa0b6734e
-
SHA512
0ade6977b1c95effcabce1e7bb1be1f5ca7e4dab1feacfd3ebffa2e827fd2fb5f5b4164a52559f2813b0eabc8f12461d1e79956a80df4d87bf2db92ded8cf1b5
-
SSDEEP
3072:G+io48UwXVLCUD6xNZcJizueaE7i8e8h9:FioZNk1aE7i
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-