General
-
Target
04808799.dat
-
Size
172KB
-
Sample
230606-nqm3zadd58
-
MD5
571671cf890e153e1f0b0b568530bce3
-
SHA1
d4c936841eb3bfb8fb81a2f59f0d0650605aa643
-
SHA256
16ac8981175feef5c310175f874bd7bc25b6b71b1ae9d6f4e0e141118e2cd998
-
SHA512
84b064199f11d431159218c71bcbfcfc7d9a31718f3034d1cd06ff62c5be7046743ce0dcbcc961a1cde0b59c096afd18e8b7b026897fb06adbd9fcb6d0ed400d
-
SSDEEP
3072:QBF8QOIKbe97H9rWRxNB2NjrOSHy+8e8hg:q8MVdaHMOSHy+
Behavioral task
behavioral1
Sample
04808799.exe
Resource
win7-20230220-en
Malware Config
Extracted
redline
maxi
83.97.73.126:19048
-
auth_value
6a3f22e5f4209b056a3fd330dc71956a
Targets
-
-
Target
04808799.dat
-
Size
172KB
-
MD5
571671cf890e153e1f0b0b568530bce3
-
SHA1
d4c936841eb3bfb8fb81a2f59f0d0650605aa643
-
SHA256
16ac8981175feef5c310175f874bd7bc25b6b71b1ae9d6f4e0e141118e2cd998
-
SHA512
84b064199f11d431159218c71bcbfcfc7d9a31718f3034d1cd06ff62c5be7046743ce0dcbcc961a1cde0b59c096afd18e8b7b026897fb06adbd9fcb6d0ed400d
-
SSDEEP
3072:QBF8QOIKbe97H9rWRxNB2NjrOSHy+8e8hg:q8MVdaHMOSHy+
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-