9841b0aa351cff50be26f560961449d511438859ba68505d2b9051fb30de4c23

General
Target

9841b0aa351cff50be26f560961449d511438859ba68505d2b9051fb30de4c23

Size

336KB

Sample

211021-xbf6jsafc7

Score
10 /10
MD5

da0358c0e42224fbaa7d17f73a9fcb30

SHA1

92919ba02c6a8eef7470d51d48d6bd7a1bc62082

SHA256

9841b0aa351cff50be26f560961449d511438859ba68505d2b9051fb30de4c23

SHA512

4d20b591129db63a9ea9e2b7df7d781b8ef382b63696cb17f2cd0dabb841e79e52e3ade9fd2432f89a3298ef3372f784d8fa4d9314f389810ebd56469bc93969

Malware Config

Extracted

Family redline
Botnet UDP
C2

45.9.20.182:52236

Targets
Target

9841b0aa351cff50be26f560961449d511438859ba68505d2b9051fb30de4c23

MD5

da0358c0e42224fbaa7d17f73a9fcb30

Filesize

336KB

Score
10/10
SHA1

92919ba02c6a8eef7470d51d48d6bd7a1bc62082

SHA256

9841b0aa351cff50be26f560961449d511438859ba68505d2b9051fb30de4c23

SHA512

4d20b591129db63a9ea9e2b7df7d781b8ef382b63696cb17f2cd0dabb841e79e52e3ade9fd2432f89a3298ef3372f784d8fa4d9314f389810ebd56469bc93969

Tags

Signatures

  • RedLine

    Description

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    Tags

  • RedLine Payload

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10