General

  • Target

    9403111d83a87e17e4f93eeba843eb76ff0f9163841539760e3073beb8f9f80b

  • Size

    338KB

  • Sample

    241104-1v95hsyamh

  • MD5

    618c7b2e96995657405c3414e8a2ca52

  • SHA1

    b5b8acf4f58741f1f2184377d4d08a7e3ee31228

  • SHA256

    9403111d83a87e17e4f93eeba843eb76ff0f9163841539760e3073beb8f9f80b

  • SHA512

    140f1afdda301ce9b000a724aba6d610941bd97e928cae6ff95a7b555ba3ec02658c866bf52ae3450df25bc54d620ae5cd6f0b825ad1e10bc2774e83e0601de8

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      9403111d83a87e17e4f93eeba843eb76ff0f9163841539760e3073beb8f9f80b

    • Size

      338KB

    • MD5

      618c7b2e96995657405c3414e8a2ca52

    • SHA1

      b5b8acf4f58741f1f2184377d4d08a7e3ee31228

    • SHA256

      9403111d83a87e17e4f93eeba843eb76ff0f9163841539760e3073beb8f9f80b

    • SHA512

      140f1afdda301ce9b000a724aba6d610941bd97e928cae6ff95a7b555ba3ec02658c866bf52ae3450df25bc54d620ae5cd6f0b825ad1e10bc2774e83e0601de8

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks