2e2bd7e768ae261118cd7f188808c0c2b2df6611106bf7cf53d4838e4714d788

General
Target

2e2bd7e768ae261118cd7f188808c0c2b2df6611106bf7cf53d4838e4714d788

Size

318KB

Sample

211014-gkpahsgcf2

Score
10 /10
MD5

96f8d58ff3de48d27d85159b16026a8e

SHA1

24f90847ef555729dd36ed90d8ba9bf83ee3ea6a

SHA256

2e2bd7e768ae261118cd7f188808c0c2b2df6611106bf7cf53d4838e4714d788

SHA512

e1fe68acc70d05466b39ba3da878ef51aa49e3b729b116b9b48db360c64e5cb2962621cc1f456a54b97d6586f1651529b556e286b418ec492529912b2eae7c38

Malware Config

Extracted

Family redline
Botnet usamoney
C2

45.142.215.47:27643

Targets
Target

2e2bd7e768ae261118cd7f188808c0c2b2df6611106bf7cf53d4838e4714d788

MD5

96f8d58ff3de48d27d85159b16026a8e

Filesize

318KB

Score
10 /10
SHA1

24f90847ef555729dd36ed90d8ba9bf83ee3ea6a

SHA256

2e2bd7e768ae261118cd7f188808c0c2b2df6611106bf7cf53d4838e4714d788

SHA512

e1fe68acc70d05466b39ba3da878ef51aa49e3b729b116b9b48db360c64e5cb2962621cc1f456a54b97d6586f1651529b556e286b418ec492529912b2eae7c38

Tags

Signatures

  • RedLine

    Description

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    Tags

  • RedLine Payload

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10