7f90f64ca873b4143f4d8b8383d0a95147e7a4cfe31f0a5606014c50d4dd7b36

General
Target

7f90f64ca873b4143f4d8b8383d0a95147e7a4cfe31f0a5606014c50d4dd7b36

Size

337KB

Sample

211021-qle8nsbbhk

Score
10 /10
MD5

9aeec807c1190054c904edaa2b005f54

SHA1

404d1353266358ae8a219302253bc0b87db2eaf9

SHA256

7f90f64ca873b4143f4d8b8383d0a95147e7a4cfe31f0a5606014c50d4dd7b36

SHA512

effa7880fb64fa932a4bcbe5ce1f1a62ea2331599cda3e8fd5fcda0d3e749e8baf24a603ccb9d7c8dd4f2dfa30b6897d50cd7000716c72627e168c83fbb9f77d

Malware Config

Extracted

Family redline
Botnet UDP
C2

45.9.20.182:52236

Targets
Target

7f90f64ca873b4143f4d8b8383d0a95147e7a4cfe31f0a5606014c50d4dd7b36

MD5

9aeec807c1190054c904edaa2b005f54

Filesize

337KB

Score
10 /10
SHA1

404d1353266358ae8a219302253bc0b87db2eaf9

SHA256

7f90f64ca873b4143f4d8b8383d0a95147e7a4cfe31f0a5606014c50d4dd7b36

SHA512

effa7880fb64fa932a4bcbe5ce1f1a62ea2331599cda3e8fd5fcda0d3e749e8baf24a603ccb9d7c8dd4f2dfa30b6897d50cd7000716c72627e168c83fbb9f77d

Tags

Signatures

  • RedLine

    Description

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    Tags

  • RedLine Payload

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10