General

  • Target

    a9d590e12458b3059faddc33857cb79fbfffaa7a25933d603234fa648d672913

  • Size

    338KB

  • Sample

    241104-3ns9jazhkk

  • MD5

    fc71ab85435424f487dfcda3dd5fc631

  • SHA1

    cd5452b5255186d1845156eb2b7cb76060dffdea

  • SHA256

    a9d590e12458b3059faddc33857cb79fbfffaa7a25933d603234fa648d672913

  • SHA512

    db8ea210110515080f08fb5d6df2c3743af9867013cc95e67cfd561ec4e7c39a68fd7992db7d172406aaf72c7897cfe2a1bf6b4af02638f1e8c301e11ed57802

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      a9d590e12458b3059faddc33857cb79fbfffaa7a25933d603234fa648d672913

    • Size

      338KB

    • MD5

      fc71ab85435424f487dfcda3dd5fc631

    • SHA1

      cd5452b5255186d1845156eb2b7cb76060dffdea

    • SHA256

      a9d590e12458b3059faddc33857cb79fbfffaa7a25933d603234fa648d672913

    • SHA512

      db8ea210110515080f08fb5d6df2c3743af9867013cc95e67cfd561ec4e7c39a68fd7992db7d172406aaf72c7897cfe2a1bf6b4af02638f1e8c301e11ed57802

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks