General

  • Target

    ea943ce8dabd9bc5e87c31a5cb3a8e96a50781e8d0270ee90f643343b65e23b3

  • Size

    102KB

  • Sample

    220321-ss6ejsdcf4

  • MD5

    aea31b804e5d0526629067b4dc981247

  • SHA1

    acb0d581c7545ff01ef994f445af1f7ef9405a6d

  • SHA256

    ea943ce8dabd9bc5e87c31a5cb3a8e96a50781e8d0270ee90f643343b65e23b3

  • SHA512

    344b6cfdba514a9fa5f504a92362d73c46ba5272841cb9d94685df1addbcc2255dc3d56431f15bfbb0944138e80535e914c8018fe47e282e8b394031b57615fd

Score
10/10

Malware Config

Extracted

Family

redline

Botnet

YT

C2

109.107.187.94:22324

Attributes
auth_value
c680644e98eb74faf59b8b87eef85c1b

Targets

    • Target

      ea943ce8dabd9bc5e87c31a5cb3a8e96a50781e8d0270ee90f643343b65e23b3

    • Size

      102KB

    • MD5

      aea31b804e5d0526629067b4dc981247

    • SHA1

      acb0d581c7545ff01ef994f445af1f7ef9405a6d

    • SHA256

      ea943ce8dabd9bc5e87c31a5cb3a8e96a50781e8d0270ee90f643343b65e23b3

    • SHA512

      344b6cfdba514a9fa5f504a92362d73c46ba5272841cb9d94685df1addbcc2255dc3d56431f15bfbb0944138e80535e914c8018fe47e282e8b394031b57615fd

    Score
    10/10
    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine Payload

MITRE ATT&CK Matrix

Collection

    Command and Control

      Credential Access

        Defense Evasion

          Discovery

            Execution

              Exfiltration

                Impact

                  Initial Access

                    Lateral Movement

                      Persistence

                        Privilege Escalation

                          Tasks