General

  • Target

    cc5d656f6282be931306108424d39016f438a4b5e4b0e525e957442b73018cc7

  • Size

    338KB

  • Sample

    241104-zahn4ayrcr

  • MD5

    04caf1c454d2c5f9573686ecc6feaf10

  • SHA1

    4eaba894181495a60ce95766f5218f82eca815df

  • SHA256

    cc5d656f6282be931306108424d39016f438a4b5e4b0e525e957442b73018cc7

  • SHA512

    faa4d1b461c419b6ec90d38d8251cdde5f1b85fd54130b5d07e195e0b77284cb8c0145d49f594f90eb4e37a5ea868d4321c4a7300933d79a73b0c84e1534c516

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      cc5d656f6282be931306108424d39016f438a4b5e4b0e525e957442b73018cc7

    • Size

      338KB

    • MD5

      04caf1c454d2c5f9573686ecc6feaf10

    • SHA1

      4eaba894181495a60ce95766f5218f82eca815df

    • SHA256

      cc5d656f6282be931306108424d39016f438a4b5e4b0e525e957442b73018cc7

    • SHA512

      faa4d1b461c419b6ec90d38d8251cdde5f1b85fd54130b5d07e195e0b77284cb8c0145d49f594f90eb4e37a5ea868d4321c4a7300933d79a73b0c84e1534c516

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks