1367d8fe351c6134d6a74edf751167421cfc3f564c4b44022cdd93a47930738d

General
Target

1367d8fe351c6134d6a74edf751167421cfc3f564c4b44022cdd93a47930738d

Size

337KB

Sample

211021-wlcensaeh5

Score
10 /10
MD5

025afc3d885cab76ba95b91e41f6aade

SHA1

3c0ee55c81f7cebc99715b9ed3519a6292c8afd6

SHA256

1367d8fe351c6134d6a74edf751167421cfc3f564c4b44022cdd93a47930738d

SHA512

f50e0932cd74bd23d4a731b8c207c1eb19a004903ed843a7971eafc8ae10ff8676c328e5f67f3209ba92e5d95abea7b23e1cb69f97bb20faa87138936331e98e

Malware Config

Extracted

Family redline
Botnet UDP
C2

45.9.20.182:52236

Targets
Target

1367d8fe351c6134d6a74edf751167421cfc3f564c4b44022cdd93a47930738d

MD5

025afc3d885cab76ba95b91e41f6aade

Filesize

337KB

Score
10 /10
SHA1

3c0ee55c81f7cebc99715b9ed3519a6292c8afd6

SHA256

1367d8fe351c6134d6a74edf751167421cfc3f564c4b44022cdd93a47930738d

SHA512

f50e0932cd74bd23d4a731b8c207c1eb19a004903ed843a7971eafc8ae10ff8676c328e5f67f3209ba92e5d95abea7b23e1cb69f97bb20faa87138936331e98e

Tags

Signatures

  • RedLine

    Description

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    Tags

  • RedLine Payload

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10