ede28b64dcb61bd426997a9507294be6185bb63ecbadc503046ac80dbc9e37dd

General
Target

ede28b64dcb61bd426997a9507294be6185bb63ecbadc503046ac80dbc9e37dd

Size

337KB

Sample

211021-p8yg4abbfq

Score
10 /10
MD5

b21319e935e0784dad1348af0a1fbfea

SHA1

0d76a71d98581f9696d3316a325edc9a247062c1

SHA256

ede28b64dcb61bd426997a9507294be6185bb63ecbadc503046ac80dbc9e37dd

SHA512

b579dceaeb604dd7c5e44856393997660b5fcfa4c8d37408755c47cbc9df8dd9fa53c5d2764f0ff299c5402e0685bdadf14f87fd89506cae4f5c825597466be5

Malware Config

Extracted

Family redline
Botnet UTS
C2

45.9.20.182:52236

Targets
Target

ede28b64dcb61bd426997a9507294be6185bb63ecbadc503046ac80dbc9e37dd

MD5

b21319e935e0784dad1348af0a1fbfea

Filesize

337KB

Score
10 /10
SHA1

0d76a71d98581f9696d3316a325edc9a247062c1

SHA256

ede28b64dcb61bd426997a9507294be6185bb63ecbadc503046ac80dbc9e37dd

SHA512

b579dceaeb604dd7c5e44856393997660b5fcfa4c8d37408755c47cbc9df8dd9fa53c5d2764f0ff299c5402e0685bdadf14f87fd89506cae4f5c825597466be5

Tags

Signatures

  • RedLine

    Description

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    Tags

  • RedLine Payload

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10