General

  • Target

    d72b9a29a5f5bc9dbed6813efb89a815422eddfc3e6f2fb68c04e13de86729df

  • Size

    458KB

  • Sample

    220129-ddzwwsbge5

  • MD5

    200e178d012b2141ea88662de4ba765d

  • SHA1

    f9833645a451ccfe4cd82f30abace0e98545078f

  • SHA256

    d72b9a29a5f5bc9dbed6813efb89a815422eddfc3e6f2fb68c04e13de86729df

  • SHA512

    60f58f141764c3a4b61670b711074a0e0def234869018747f937c8484cbe48c8f0eebec1c710c7cc82f8e08c8d5b1a05cd51a02ea660e2f3963db5de033cca35

Malware Config

Extracted

Family

redline

Botnet

noname

C2

185.215.113.29:20819

Targets

    • Target

      d72b9a29a5f5bc9dbed6813efb89a815422eddfc3e6f2fb68c04e13de86729df

    • Size

      458KB

    • MD5

      200e178d012b2141ea88662de4ba765d

    • SHA1

      f9833645a451ccfe4cd82f30abace0e98545078f

    • SHA256

      d72b9a29a5f5bc9dbed6813efb89a815422eddfc3e6f2fb68c04e13de86729df

    • SHA512

      60f58f141764c3a4b61670b711074a0e0def234869018747f937c8484cbe48c8f0eebec1c710c7cc82f8e08c8d5b1a05cd51a02ea660e2f3963db5de033cca35

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine Payload

MITRE ATT&CK Matrix

Tasks