89b17fac87b0d837900a454d9dac1d25366d240e48584b8f52683242836a995e

General
Target

89b17fac87b0d837900a454d9dac1d25366d240e48584b8f52683242836a995e

Size

337KB

Sample

211021-vwx9fsbdgm

Score
10 /10
MD5

ac39136386e8fd76bca528ae10b0dd35

SHA1

d6e493808e35a6f19e2626185f836c3a1992b114

SHA256

89b17fac87b0d837900a454d9dac1d25366d240e48584b8f52683242836a995e

SHA512

ff6a5a0f79c1f2266acc7b89e04b3ed6794c58dba8c29a4ea0bbf5315b34f4cb38cd032c0e28f875f5eff7635fc8e48e57d0dba195cc098133ed97e729915687

Malware Config

Extracted

Family redline
Botnet UDP
C2

45.9.20.182:52236

Targets
Target

89b17fac87b0d837900a454d9dac1d25366d240e48584b8f52683242836a995e

MD5

ac39136386e8fd76bca528ae10b0dd35

Filesize

337KB

Score
10 /10
SHA1

d6e493808e35a6f19e2626185f836c3a1992b114

SHA256

89b17fac87b0d837900a454d9dac1d25366d240e48584b8f52683242836a995e

SHA512

ff6a5a0f79c1f2266acc7b89e04b3ed6794c58dba8c29a4ea0bbf5315b34f4cb38cd032c0e28f875f5eff7635fc8e48e57d0dba195cc098133ed97e729915687

Tags

Signatures

  • RedLine

    Description

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    Tags

  • RedLine Payload

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10