General

  • Target

    d287a1b84d16db6c1a2689929422bfd4486cb35af971daf39f8c560bb26dd7f3

  • Size

    340KB

  • Sample

    241105-2sjp8asrbr

  • MD5

    c6fcbdb51cf2aaaeb8ea8beaf44c8e74

  • SHA1

    2388cc44cc0562ab577d995a3c3bad3ba8e42d1e

  • SHA256

    d287a1b84d16db6c1a2689929422bfd4486cb35af971daf39f8c560bb26dd7f3

  • SHA512

    aa1e06afef976f83982b8359ac6c491c6eb6ea276f9a7d9819363b90bee7c47175a64220edccf1a956e1ddc1f59d6f2bda7c85ff5e4374178b4542665ee82fc8

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      d287a1b84d16db6c1a2689929422bfd4486cb35af971daf39f8c560bb26dd7f3

    • Size

      340KB

    • MD5

      c6fcbdb51cf2aaaeb8ea8beaf44c8e74

    • SHA1

      2388cc44cc0562ab577d995a3c3bad3ba8e42d1e

    • SHA256

      d287a1b84d16db6c1a2689929422bfd4486cb35af971daf39f8c560bb26dd7f3

    • SHA512

      aa1e06afef976f83982b8359ac6c491c6eb6ea276f9a7d9819363b90bee7c47175a64220edccf1a956e1ddc1f59d6f2bda7c85ff5e4374178b4542665ee82fc8

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks