General

  • Target

    c9336bcd57afe25d3742b0f0ef489784b81f9c12e289a0f6223b4de29fd5f949

  • Size

    368KB

  • Sample

    230129-wfvn3ahe2v

  • MD5

    5440f766a474d152cafa52f1523b6d08

  • SHA1

    5c5ced856aab135b6e747b204a59ba54a5af1e7c

  • SHA256

    c9336bcd57afe25d3742b0f0ef489784b81f9c12e289a0f6223b4de29fd5f949

  • SHA512

    36d2d92fd2d35342476263c50a2bec8d1230c272a81f556b2f5f6ee2bb8b6255465239a5d57b25b0b04eb4b82b1012e0acbc3a9d2a5f356a4791dba2718fc867

  • SSDEEP

    6144:KHiHAEvQb+xCzH+8fER4M2B5B1z85unzsPozDYvfburZMY7pc9M:KCHrIb+xkHrER4MYvzUizS+DYvfyOs+M

Malware Config

Extracted

Family

redline

Botnet

hack

C2

45.144.31.206:3214

Targets

    • Target

      c9336bcd57afe25d3742b0f0ef489784b81f9c12e289a0f6223b4de29fd5f949

    • Size

      368KB

    • MD5

      5440f766a474d152cafa52f1523b6d08

    • SHA1

      5c5ced856aab135b6e747b204a59ba54a5af1e7c

    • SHA256

      c9336bcd57afe25d3742b0f0ef489784b81f9c12e289a0f6223b4de29fd5f949

    • SHA512

      36d2d92fd2d35342476263c50a2bec8d1230c272a81f556b2f5f6ee2bb8b6255465239a5d57b25b0b04eb4b82b1012e0acbc3a9d2a5f356a4791dba2718fc867

    • SSDEEP

      6144:KHiHAEvQb+xCzH+8fER4M2B5B1z85unzsPozDYvfburZMY7pc9M:KCHrIb+xkHrER4MYvzUizS+DYvfyOs+M

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

MITRE ATT&CK Matrix

Tasks