General

  • Target

    a342a9e389839dc81a4d05dfa9be7f3475519466aeee4a6b05689496fba8448d

  • Size

    339KB

  • Sample

    241104-2hq2jszajl

  • MD5

    5e0ba9ac7364673fd60bb3c05ad6346a

  • SHA1

    1bbb796d799e89761fc77818a38f2e9443caa580

  • SHA256

    a342a9e389839dc81a4d05dfa9be7f3475519466aeee4a6b05689496fba8448d

  • SHA512

    aebc54f73f2e45b00845023ea28252868d2829e68bb93b966f49696853b70cc02434c6960c92e139e430b4d4a293b93a407d8129386f67b016283276d56bd102

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      a342a9e389839dc81a4d05dfa9be7f3475519466aeee4a6b05689496fba8448d

    • Size

      339KB

    • MD5

      5e0ba9ac7364673fd60bb3c05ad6346a

    • SHA1

      1bbb796d799e89761fc77818a38f2e9443caa580

    • SHA256

      a342a9e389839dc81a4d05dfa9be7f3475519466aeee4a6b05689496fba8448d

    • SHA512

      aebc54f73f2e45b00845023ea28252868d2829e68bb93b966f49696853b70cc02434c6960c92e139e430b4d4a293b93a407d8129386f67b016283276d56bd102

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks