752b2e2089ce250a39788e4930f7c3484633a3d1f9997b44a14262a2c25356d1

General
Target

752b2e2089ce250a39788e4930f7c3484633a3d1f9997b44a14262a2c25356d1

Size

337KB

Sample

211021-p8n9esacg5

Score
10 /10
MD5

5280ea7218dacce80b9ddf5d437e939c

SHA1

3a42e82a80a89d37ff8affc3c26d069612cc969d

SHA256

752b2e2089ce250a39788e4930f7c3484633a3d1f9997b44a14262a2c25356d1

SHA512

8a7e86cf9cf484290531861854e2d231eb86284b2ef65a9e2a4e35174987b475ecceeb3010fb55b173e9a61a135c4705bb3851ae3e29dd1e91f49dfd5502ac48

Malware Config

Extracted

Family redline
Botnet PUB
C2

45.9.20.182:52236

Targets
Target

752b2e2089ce250a39788e4930f7c3484633a3d1f9997b44a14262a2c25356d1

MD5

5280ea7218dacce80b9ddf5d437e939c

Filesize

337KB

Score
10/10
SHA1

3a42e82a80a89d37ff8affc3c26d069612cc969d

SHA256

752b2e2089ce250a39788e4930f7c3484633a3d1f9997b44a14262a2c25356d1

SHA512

8a7e86cf9cf484290531861854e2d231eb86284b2ef65a9e2a4e35174987b475ecceeb3010fb55b173e9a61a135c4705bb3851ae3e29dd1e91f49dfd5502ac48

Tags

Signatures

  • RedLine

    Description

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    Tags

  • RedLine Payload

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10