General

  • Target

    4bf4734d61dd8b9f934d04135bf1b4707a6da2331b2286afda16e79c3f70bafe

  • Size

    340KB

  • Sample

    241104-169yws1lbq

  • MD5

    e20cfd2a906e0e18cea3adf1d5161b38

  • SHA1

    2fa52a5045100f0730f3e586987b64a52ed13a45

  • SHA256

    4bf4734d61dd8b9f934d04135bf1b4707a6da2331b2286afda16e79c3f70bafe

  • SHA512

    8343eac2039eaa076deec4f82db03b7276a111fb7f465bc61c5625e7bde6ebb36fd033365d892263fbc4c098f4bc5273a551f194bb7335edb11aea0e2f0684c4

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      4bf4734d61dd8b9f934d04135bf1b4707a6da2331b2286afda16e79c3f70bafe

    • Size

      340KB

    • MD5

      e20cfd2a906e0e18cea3adf1d5161b38

    • SHA1

      2fa52a5045100f0730f3e586987b64a52ed13a45

    • SHA256

      4bf4734d61dd8b9f934d04135bf1b4707a6da2331b2286afda16e79c3f70bafe

    • SHA512

      8343eac2039eaa076deec4f82db03b7276a111fb7f465bc61c5625e7bde6ebb36fd033365d892263fbc4c098f4bc5273a551f194bb7335edb11aea0e2f0684c4

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks