1d3958ea0a35188af0c216be146a09585e3695511b9c6e22c48e657f555faa86

General
Target

1d3958ea0a35188af0c216be146a09585e3695511b9c6e22c48e657f555faa86

Size

337KB

Sample

211021-zvywtaagb4

Score
10 /10
MD5

2901a865211dfe25623528d845231427

SHA1

db53cda461fc151d50dc5a0c9e32f315538577c5

SHA256

1d3958ea0a35188af0c216be146a09585e3695511b9c6e22c48e657f555faa86

SHA512

a3aa76152a2edca14f7edf72ed7fe9d76d32b5c5fc65f7824c8fa2a36261e2c8edf5f4a2ce12777c82277ae562f0e3de7e17623fd914ddab3e5ff10d482fd3d7

Malware Config

Extracted

Family redline
Botnet UTS
C2

45.9.20.182:52236

Targets
Target

1d3958ea0a35188af0c216be146a09585e3695511b9c6e22c48e657f555faa86

MD5

2901a865211dfe25623528d845231427

Filesize

337KB

Score
10/10
SHA1

db53cda461fc151d50dc5a0c9e32f315538577c5

SHA256

1d3958ea0a35188af0c216be146a09585e3695511b9c6e22c48e657f555faa86

SHA512

a3aa76152a2edca14f7edf72ed7fe9d76d32b5c5fc65f7824c8fa2a36261e2c8edf5f4a2ce12777c82277ae562f0e3de7e17623fd914ddab3e5ff10d482fd3d7

Tags

Signatures

  • RedLine

    Description

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    Tags

  • RedLine Payload

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10