General
-
Target
b69c637dacf94805fa385afd063233baaae1316d0249144711696d269ebcc540
-
Size
496KB
-
Sample
231022-dhfzkseh56
-
MD5
476f554f50346061db795c6bdd518406
-
SHA1
aaded5b0848d31d067a7e0ce6124bde296ea600b
-
SHA256
b69c637dacf94805fa385afd063233baaae1316d0249144711696d269ebcc540
-
SHA512
52e0b91540fe14048b5192178aacc983700c746d14314c1c2212c0c36542913dc56017adecf3454c07e770bced32debef20beb12a91496a8829a8dcbe35fef88
-
SSDEEP
12288:18G73LBQB2o97Hr62k3n/+pLsv9+eXUeF6i1L:33LBQkAr62k3n/+pAv+ebL
Malware Config
Targets
-
-
Target
b69c637dacf94805fa385afd063233baaae1316d0249144711696d269ebcc540
-
Size
496KB
-
MD5
476f554f50346061db795c6bdd518406
-
SHA1
aaded5b0848d31d067a7e0ce6124bde296ea600b
-
SHA256
b69c637dacf94805fa385afd063233baaae1316d0249144711696d269ebcc540
-
SHA512
52e0b91540fe14048b5192178aacc983700c746d14314c1c2212c0c36542913dc56017adecf3454c07e770bced32debef20beb12a91496a8829a8dcbe35fef88
-
SSDEEP
12288:18G73LBQB2o97Hr62k3n/+pLsv9+eXUeF6i1L:33LBQkAr62k3n/+pAv+ebL
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-