redline | acb2413edcd7634bcccbaf0582522c086dcb8454446450d659bb8cad2ca8313e | Triage

Sharing

General

Target

acb2413edcd7634bcccbaf0582522c086dcb8454446450d659bb8cad2ca8313e
Size

333KB
Sample

221128-lbfz1acd32
MD5

57c1b185c873ee6dc10a60389947aa99
SHA1

122912ed08d061117e7c932c96b3c97cbf13950e
SHA256

acb2413edcd7634bcccbaf0582522c086dcb8454446450d659bb8cad2ca8313e
SHA512

0e54f36ecdb06f2dc956d2d1f2dccca5a3f5fd382b1685f63e390bb77f27d04e31e51ae52834ca8f6dfcfcb83a26caf1f9a451b5c376f55b4afe0d0e2470fc13
SSDEEP

6144:Fjxhscn9lAHhwm5ZGV7i6LAxEEEL/+JqNUV3MF2mxx:n7bQRfGJiKw6LmJqN8MFp

Score

10^/10

redline bub_1 infostealer

Malware Config

Extracted

Family

redline

Botnet

BUB_1

C2

193.56.146.64:65441

Attributes

auth_value
a272f3a2850ec3dccdaed97234b7c40e

Targets

- Target
  
  acb2413edcd7634bcccbaf0582522c086dcb8454446450d659bb8cad2ca8313e
- Size
  
  333KB
- MD5
  
  57c1b185c873ee6dc10a60389947aa99
- SHA1
  
  122912ed08d061117e7c932c96b3c97cbf13950e
- SHA256
  
  acb2413edcd7634bcccbaf0582522c086dcb8454446450d659bb8cad2ca8313e
- SHA512
  
  0e54f36ecdb06f2dc956d2d1f2dccca5a3f5fd382b1685f63e390bb77f27d04e31e51ae52834ca8f6dfcfcb83a26caf1f9a451b5c376f55b4afe0d0e2470fc13
- SSDEEP
  
  6144:Fjxhscn9lAHhwm5ZGV7i6LAxEEEL/+JqNUV3MF2mxx:n7bQRfGJiKw6LmJqN8MFp
Score

10^/10

redline bub_1 infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinebub_1infostealer

behavioral2