91ce28971551a26461d2ba15a9402cfd6cb4c7326ea4b8d2298ee5ee196602f1

General
Target

91ce28971551a26461d2ba15a9402cfd6cb4c7326ea4b8d2298ee5ee196602f1

Size

336KB

Sample

211021-t1d6psbddn

Score
10 /10
MD5

3a99d3fd7188a804ce3c3cdcf24dbc2b

SHA1

12b53532fb6879b00e44a876216ca4ffe95a2900

SHA256

91ce28971551a26461d2ba15a9402cfd6cb4c7326ea4b8d2298ee5ee196602f1

SHA512

8bc874d1b160a681c6c35d57255272d4b035876a560191d3054b44750f86362f2f894f507cde8234d9e134f0c54ebaaf28c36686785fa75c45a91eb62613d184

Malware Config

Extracted

Family redline
Botnet UDP
C2

45.9.20.182:52236

Targets
Target

91ce28971551a26461d2ba15a9402cfd6cb4c7326ea4b8d2298ee5ee196602f1

MD5

3a99d3fd7188a804ce3c3cdcf24dbc2b

Filesize

336KB

Score
10 /10
SHA1

12b53532fb6879b00e44a876216ca4ffe95a2900

SHA256

91ce28971551a26461d2ba15a9402cfd6cb4c7326ea4b8d2298ee5ee196602f1

SHA512

8bc874d1b160a681c6c35d57255272d4b035876a560191d3054b44750f86362f2f894f507cde8234d9e134f0c54ebaaf28c36686785fa75c45a91eb62613d184

Tags

Signatures

  • RedLine

    Description

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    Tags

  • RedLine Payload

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10