General

  • Target

    0bdf12fa85c4dccb15015bbbf7c07f3e249cbee24c25e10d7c6d63bbf91a7448

  • Size

    337KB

  • Sample

    241105-aycejstjbp

  • MD5

    140981d7390e0dceda27d673c3e71d36

  • SHA1

    83205da8abf5dccff642aa10310dc46da011b16a

  • SHA256

    0bdf12fa85c4dccb15015bbbf7c07f3e249cbee24c25e10d7c6d63bbf91a7448

  • SHA512

    c50ddd83408118806d6077b914e87e90b95716217d5bcaef2de06dd67205babb4950a045eebd221b7cb8efff33e2f76610ba6af716723d2d53b0306b180b2500

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      0bdf12fa85c4dccb15015bbbf7c07f3e249cbee24c25e10d7c6d63bbf91a7448

    • Size

      337KB

    • MD5

      140981d7390e0dceda27d673c3e71d36

    • SHA1

      83205da8abf5dccff642aa10310dc46da011b16a

    • SHA256

      0bdf12fa85c4dccb15015bbbf7c07f3e249cbee24c25e10d7c6d63bbf91a7448

    • SHA512

      c50ddd83408118806d6077b914e87e90b95716217d5bcaef2de06dd67205babb4950a045eebd221b7cb8efff33e2f76610ba6af716723d2d53b0306b180b2500

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks