f1fd2e9136b755ccc0e0203addcfdc3661c3fa825e3e751db880194e3fab6ab2

General
Target

f1fd2e9136b755ccc0e0203addcfdc3661c3fa825e3e751db880194e3fab6ab2

Size

337KB

Sample

211021-t167gsbddr

Score
10 /10
MD5

7aa61e0a545f454c760b1fd29220eb2d

SHA1

cafa5c0f92c5f75da198f3651b50987a6ba86ca5

SHA256

f1fd2e9136b755ccc0e0203addcfdc3661c3fa825e3e751db880194e3fab6ab2

SHA512

0d37eb07ef2cde5513963c53da3c812bc51184a5e9f4b89796a866d4deff033510a18a2c9e876acb81c5f6a0807e1cd76ba0deb2be7f316565b59ff907ece5bf

Malware Config

Extracted

Family redline
Botnet UTS
C2

45.9.20.182:52236

Targets
Target

f1fd2e9136b755ccc0e0203addcfdc3661c3fa825e3e751db880194e3fab6ab2

MD5

7aa61e0a545f454c760b1fd29220eb2d

Filesize

337KB

Score
10/10
SHA1

cafa5c0f92c5f75da198f3651b50987a6ba86ca5

SHA256

f1fd2e9136b755ccc0e0203addcfdc3661c3fa825e3e751db880194e3fab6ab2

SHA512

0d37eb07ef2cde5513963c53da3c812bc51184a5e9f4b89796a866d4deff033510a18a2c9e876acb81c5f6a0807e1cd76ba0deb2be7f316565b59ff907ece5bf

Tags

Signatures

  • RedLine

    Description

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    Tags

  • RedLine Payload

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10