redline | 83ed08686ecc2ffcbe16ec7ee1f7d99aa4fd7d4ed450881e881868580e0aecff | Triage

Sharing

General

Target

malware_smoke_1101184622
Size

390KB
Sample

221004-mmdjpaahen
MD5

0d4341dcf7c572322cc3a2558d74a4a0
SHA1

0db4654d9f0437be52bdeaddc58ff228b4f5234e
SHA256

83ed08686ecc2ffcbe16ec7ee1f7d99aa4fd7d4ed450881e881868580e0aecff
SHA512

55fb0cdd0c11c4bd7529a5c2df378ef428cb5ecb974dc953c16c9a9ea020680b61fb3c6dfc3e61ec9fa7c61d1f271c9da772e0dd35bb12b713c2249226345440
SSDEEP

6144:TgNJQ9r4XbMXXpw5KOsOVrDD+543TfcTWa/6c5+i9He7q2h6uw2:cNGr4XbMXXpwJvZDD+5GYJhYIul

Score

10^/10

redline 170 infostealer

Malware Config

Extracted

Family

redline

Botnet

170

C2

193.106.191.196:44310

Attributes

auth_value
53e4e07dd3f74dc02e33a316c82edf3d

Targets

- Target
  
  malware_smoke_1101184622
- Size
  
  390KB
- MD5
  
  0d4341dcf7c572322cc3a2558d74a4a0
- SHA1
  
  0db4654d9f0437be52bdeaddc58ff228b4f5234e
- SHA256
  
  83ed08686ecc2ffcbe16ec7ee1f7d99aa4fd7d4ed450881e881868580e0aecff
- SHA512
  
  55fb0cdd0c11c4bd7529a5c2df378ef428cb5ecb974dc953c16c9a9ea020680b61fb3c6dfc3e61ec9fa7c61d1f271c9da772e0dd35bb12b713c2249226345440
- SSDEEP
  
  6144:TgNJQ9r4XbMXXpw5KOsOVrDD+543TfcTWa/6c5+i9He7q2h6uw2:cNGr4XbMXXpwJvZDD+5GYJhYIul
Score

10^/10

redline 170 infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redline170infostealer

behavioral2