4182bbe376211b016413047781db3a33845175e6e42607a96e72e35c25ebf8f8

General
Target

4182bbe376211b016413047781db3a33845175e6e42607a96e72e35c25ebf8f8

Size

106KB

Sample

220323-g68w2sgfg7

Score
10 /10
MD5

bdcda17e1b94619d730cab69ad833288

SHA1

cd2589c8bc69c75384cd0ab9df9f4c9778c6bca2

SHA256

4182bbe376211b016413047781db3a33845175e6e42607a96e72e35c25ebf8f8

SHA512

70b35a1d93a5d771b8ffcb1040619c1185150ddea32dc71ba88db3d128838f444f2e3acb9774e186e56bf7829707c290ac8ee02531ae934e8834675cad3734ed

Malware Config

Extracted

Family redline
Botnet 1
C2

20.53.13.165:43420

Attributes
auth_value
7ed907c60301a0aea12a58314db264f5
Targets
Target

4182bbe376211b016413047781db3a33845175e6e42607a96e72e35c25ebf8f8

MD5

bdcda17e1b94619d730cab69ad833288

Filesize

106KB

Score
10/10
SHA1

cd2589c8bc69c75384cd0ab9df9f4c9778c6bca2

SHA256

4182bbe376211b016413047781db3a33845175e6e42607a96e72e35c25ebf8f8

SHA512

70b35a1d93a5d771b8ffcb1040619c1185150ddea32dc71ba88db3d128838f444f2e3acb9774e186e56bf7829707c290ac8ee02531ae934e8834675cad3734ed

Tags

Signatures

  • RedLine

    Description

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    Tags

  • RedLine Payload

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          10/10

                          behavioral1

                          10/10