3477e89e185a006b02dc9d832f5030cae0a207fa5b1b3476004fb5498cce4754

General
Target

3477e89e185a006b02dc9d832f5030cae0a207fa5b1b3476004fb5498cce4754

Size

337KB

Sample

211021-sl557sbdam

Score
10 /10
MD5

bb8612d4a1a87600d08a550d7ac3fd5f

SHA1

32ae35e331fda80521bead4449493c326122db07

SHA256

3477e89e185a006b02dc9d832f5030cae0a207fa5b1b3476004fb5498cce4754

SHA512

5678dd193fbfefa188953f1f4e561330ca90061c7a4a998059abf7e4c63a5828cf642450fe52d729812281a636af3427fdc784cbc5dd8b9552d7d5d5b2145820

Malware Config

Extracted

Family redline
Botnet PUB
C2

45.9.20.182:52236

Targets
Target

3477e89e185a006b02dc9d832f5030cae0a207fa5b1b3476004fb5498cce4754

MD5

bb8612d4a1a87600d08a550d7ac3fd5f

Filesize

337KB

Score
10/10
SHA1

32ae35e331fda80521bead4449493c326122db07

SHA256

3477e89e185a006b02dc9d832f5030cae0a207fa5b1b3476004fb5498cce4754

SHA512

5678dd193fbfefa188953f1f4e561330ca90061c7a4a998059abf7e4c63a5828cf642450fe52d729812281a636af3427fdc784cbc5dd8b9552d7d5d5b2145820

Tags

Signatures

  • RedLine

    Description

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    Tags

  • RedLine Payload

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10