ba270ce2c086cf0f9c506c2a5237c54d710c8f515a81b206b4fa0702842ff1a1

General
Target

ba270ce2c086cf0f9c506c2a5237c54d710c8f515a81b206b4fa0702842ff1a1

Size

337KB

Sample

211021-ztpazsagb3

Score
10 /10
MD5

8bc20376513f42f4c466ce38b2a5bdf4

SHA1

6eea0e03b892b367828178340cd3d4a2718ebb1b

SHA256

ba270ce2c086cf0f9c506c2a5237c54d710c8f515a81b206b4fa0702842ff1a1

SHA512

bcaf46d27fade9a8eb630e9e03a97a9467abd685cffe9cf8a187ba132affcedbadaddc2c50478ff560877a138d6fc0f3b2082c6f2aee35b0cadac1339773a3a4

Malware Config

Extracted

Family redline
Botnet UDP
C2

45.9.20.182:52236

Targets
Target

ba270ce2c086cf0f9c506c2a5237c54d710c8f515a81b206b4fa0702842ff1a1

MD5

8bc20376513f42f4c466ce38b2a5bdf4

Filesize

337KB

Score
10/10
SHA1

6eea0e03b892b367828178340cd3d4a2718ebb1b

SHA256

ba270ce2c086cf0f9c506c2a5237c54d710c8f515a81b206b4fa0702842ff1a1

SHA512

bcaf46d27fade9a8eb630e9e03a97a9467abd685cffe9cf8a187ba132affcedbadaddc2c50478ff560877a138d6fc0f3b2082c6f2aee35b0cadac1339773a3a4

Tags

Signatures

  • RedLine

    Description

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    Tags

  • RedLine Payload

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10