General

  • Target

    4182bbe376211b016413047781db3a33845175e6e42607a96e72e35c25ebf8f8

  • Size

    106KB

  • Sample

    220323-g68w2sgfg7

  • MD5

    bdcda17e1b94619d730cab69ad833288

  • SHA1

    cd2589c8bc69c75384cd0ab9df9f4c9778c6bca2

  • SHA256

    4182bbe376211b016413047781db3a33845175e6e42607a96e72e35c25ebf8f8

  • SHA512

    70b35a1d93a5d771b8ffcb1040619c1185150ddea32dc71ba88db3d128838f444f2e3acb9774e186e56bf7829707c290ac8ee02531ae934e8834675cad3734ed

Score
10/10

Malware Config

Extracted

Family

redline

Botnet

1

C2

20.53.13.165:43420

Attributes
auth_value
7ed907c60301a0aea12a58314db264f5

Targets

    • Target

      4182bbe376211b016413047781db3a33845175e6e42607a96e72e35c25ebf8f8

    • Size

      106KB

    • MD5

      bdcda17e1b94619d730cab69ad833288

    • SHA1

      cd2589c8bc69c75384cd0ab9df9f4c9778c6bca2

    • SHA256

      4182bbe376211b016413047781db3a33845175e6e42607a96e72e35c25ebf8f8

    • SHA512

      70b35a1d93a5d771b8ffcb1040619c1185150ddea32dc71ba88db3d128838f444f2e3acb9774e186e56bf7829707c290ac8ee02531ae934e8834675cad3734ed

    Score
    10/10
    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine Payload

MITRE ATT&CK Matrix

Collection

    Command and Control

      Credential Access

        Defense Evasion

          Discovery

            Execution

              Exfiltration

                Impact

                  Initial Access

                    Lateral Movement

                      Persistence

                        Privilege Escalation