5d6f61e75a2286af02e2380c000b2ceead114415642d4e97512ad03447caa8a4

General
Target

5d6f61e75a2286af02e2380c000b2ceead114415642d4e97512ad03447caa8a4

Size

337KB

Sample

211021-yrkdksaff9

Score
10 /10
MD5

8cf0a2305ac41290603fafb2bc82dbaa

SHA1

64eeb86014d4f0737ddde6c332d55751916f8bb3

SHA256

5d6f61e75a2286af02e2380c000b2ceead114415642d4e97512ad03447caa8a4

SHA512

ec08f963cb097b9e1f738649e15bfdb5e441ab92287aeb23c5f333afbb9fe30d34b170f8fef8a2f05704ce81d56c54399f0d214ac0163d908cc51149cc6c3c71

Malware Config

Extracted

Family redline
Botnet UDP
C2

45.9.20.182:52236

Targets
Target

5d6f61e75a2286af02e2380c000b2ceead114415642d4e97512ad03447caa8a4

MD5

8cf0a2305ac41290603fafb2bc82dbaa

Filesize

337KB

Score
10/10
SHA1

64eeb86014d4f0737ddde6c332d55751916f8bb3

SHA256

5d6f61e75a2286af02e2380c000b2ceead114415642d4e97512ad03447caa8a4

SHA512

ec08f963cb097b9e1f738649e15bfdb5e441ab92287aeb23c5f333afbb9fe30d34b170f8fef8a2f05704ce81d56c54399f0d214ac0163d908cc51149cc6c3c71

Tags

Signatures

  • RedLine

    Description

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    Tags

  • RedLine Payload

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10