redline | 3fdf4f638156b25272f306e9067ae9b43c028995773d5af450bcb88611fa99fa | Triage

Sharing

General

Target

malware_smoke_3478094737
Size

390KB
Sample

221004-mtfbvsahfr
MD5

8c222b9a8a2d66c88d8cbd98a4ea5fda
SHA1

97d749fc37e7e67102066959a957ad28eb013ef8
SHA256

3fdf4f638156b25272f306e9067ae9b43c028995773d5af450bcb88611fa99fa
SHA512

6cd6f8fb5475cfc38d84b2c2ff2ebef8429276d0b24ea84d8a60483af39fb9d5b3a69d0dd364da7fb03d4c54fb937f48aca933943e11d30691acc118022cd851
SSDEEP

12288:86EWy5lGtXTu1yspHgTaViztE5H9vDjuHiM:GBlo6FZsZE/vDj0j

Score

10^/10

redline 170 infostealer

Malware Config

Extracted

Family

redline

Botnet

170

C2

193.106.191.196:44310

Attributes

auth_value
53e4e07dd3f74dc02e33a316c82edf3d

Targets

- Target
  
  malware_smoke_3478094737
- Size
  
  390KB
- MD5
  
  8c222b9a8a2d66c88d8cbd98a4ea5fda
- SHA1
  
  97d749fc37e7e67102066959a957ad28eb013ef8
- SHA256
  
  3fdf4f638156b25272f306e9067ae9b43c028995773d5af450bcb88611fa99fa
- SHA512
  
  6cd6f8fb5475cfc38d84b2c2ff2ebef8429276d0b24ea84d8a60483af39fb9d5b3a69d0dd364da7fb03d4c54fb937f48aca933943e11d30691acc118022cd851
- SSDEEP
  
  12288:86EWy5lGtXTu1yspHgTaViztE5H9vDjuHiM:GBlo6FZsZE/vDj0j
Score

10^/10

redline 170 infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redline170infostealer

behavioral2