General

  • Target

    645388a8ae9bb9031fbc69485f6f54e3150328547664ec8758b440da6d0993ac

  • Size

    339KB

  • Sample

    241105-bnn62asblr

  • MD5

    2dd3685a021a3f8259ae44b23fe0b808

  • SHA1

    e19ce8442d18216b38183a196860b68198efa730

  • SHA256

    645388a8ae9bb9031fbc69485f6f54e3150328547664ec8758b440da6d0993ac

  • SHA512

    5b98593981c49d82b2fe58aa14d6a78f5792afc98dcd1caa49a72febdc7878b3d159e9ef9566ba4d2be7aca9fba347c3df943b40c4762bafe166fe5ee7cc8801

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      645388a8ae9bb9031fbc69485f6f54e3150328547664ec8758b440da6d0993ac

    • Size

      339KB

    • MD5

      2dd3685a021a3f8259ae44b23fe0b808

    • SHA1

      e19ce8442d18216b38183a196860b68198efa730

    • SHA256

      645388a8ae9bb9031fbc69485f6f54e3150328547664ec8758b440da6d0993ac

    • SHA512

      5b98593981c49d82b2fe58aa14d6a78f5792afc98dcd1caa49a72febdc7878b3d159e9ef9566ba4d2be7aca9fba347c3df943b40c4762bafe166fe5ee7cc8801

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks