68065ee28d7a65bc443642e0a24da11467a6b366a5c50c1a02e63092fb89897e

General
Target

68065ee28d7a65bc443642e0a24da11467a6b366a5c50c1a02e63092fb89897e

Size

337KB

Sample

211021-v8zm2saeg4

Score
10 /10
MD5

691e2dcd636a76a514942e968366ee43

SHA1

43232978574660dfe35f1194bb0c46b5ddef7206

SHA256

68065ee28d7a65bc443642e0a24da11467a6b366a5c50c1a02e63092fb89897e

SHA512

c356818986f2ce60a65bc91049f9c7c7a3ac96a04793ee3ec7e5b35bfb4cdadc8e11a3e65eafb5b72814086754e2b0a8ab630fa6e58577fe8b3dfc2a195e7016

Malware Config

Extracted

Family redline
Botnet UTS
C2

45.9.20.182:52236

Targets
Target

68065ee28d7a65bc443642e0a24da11467a6b366a5c50c1a02e63092fb89897e

MD5

691e2dcd636a76a514942e968366ee43

Filesize

337KB

Score
10 /10
SHA1

43232978574660dfe35f1194bb0c46b5ddef7206

SHA256

68065ee28d7a65bc443642e0a24da11467a6b366a5c50c1a02e63092fb89897e

SHA512

c356818986f2ce60a65bc91049f9c7c7a3ac96a04793ee3ec7e5b35bfb4cdadc8e11a3e65eafb5b72814086754e2b0a8ab630fa6e58577fe8b3dfc2a195e7016

Tags

Signatures

  • RedLine

    Description

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    Tags

  • RedLine Payload

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10