3a18e345e47e033d62d7faa33c6a0161bebb2f0028b20e39f5f4451ef43d8a94

General
Target

3a18e345e47e033d62d7faa33c6a0161bebb2f0028b20e39f5f4451ef43d8a94

Size

337KB

Sample

211021-rhx5rabcel

Score
10 /10
MD5

8bd206d13e35053b034536487901829e

SHA1

e026e1a881980e545eb85c7a42f15656099dd556

SHA256

3a18e345e47e033d62d7faa33c6a0161bebb2f0028b20e39f5f4451ef43d8a94

SHA512

d2a537c786a7b92fba5133bafa023a63145aa63308670c91f152b35584f4b86a8b56e1347fec985cd87b5ebcb5148351511e7b81821096b9390878b368380949

Malware Config

Extracted

Family redline
Botnet PUB
C2

45.9.20.182:52236

Targets
Target

3a18e345e47e033d62d7faa33c6a0161bebb2f0028b20e39f5f4451ef43d8a94

MD5

8bd206d13e35053b034536487901829e

Filesize

337KB

Score
10 /10
SHA1

e026e1a881980e545eb85c7a42f15656099dd556

SHA256

3a18e345e47e033d62d7faa33c6a0161bebb2f0028b20e39f5f4451ef43d8a94

SHA512

d2a537c786a7b92fba5133bafa023a63145aa63308670c91f152b35584f4b86a8b56e1347fec985cd87b5ebcb5148351511e7b81821096b9390878b368380949

Tags

Signatures

  • RedLine

    Description

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    Tags

  • RedLine Payload

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10