General

  • Target

    48271cee68f9b29c3e7be448682cdc684b3699a71b7bb4639fa0723aa543c35b

  • Size

    340KB

  • Sample

    241105-nhmggazfkf

  • MD5

    cbf75fa38ca0f6b19353c338dcd8cae6

  • SHA1

    a4229f12302a707a3454dc955e5b5b916af71816

  • SHA256

    48271cee68f9b29c3e7be448682cdc684b3699a71b7bb4639fa0723aa543c35b

  • SHA512

    c2a9592bdb671dd84e4a1213766628e8d77e347b06aa1493720a51f39d24b5db2e5ec18d46befcbf650594d7828d4da22e2f18809bcfbe6fb9d37026fe4812e0

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      48271cee68f9b29c3e7be448682cdc684b3699a71b7bb4639fa0723aa543c35b

    • Size

      340KB

    • MD5

      cbf75fa38ca0f6b19353c338dcd8cae6

    • SHA1

      a4229f12302a707a3454dc955e5b5b916af71816

    • SHA256

      48271cee68f9b29c3e7be448682cdc684b3699a71b7bb4639fa0723aa543c35b

    • SHA512

      c2a9592bdb671dd84e4a1213766628e8d77e347b06aa1493720a51f39d24b5db2e5ec18d46befcbf650594d7828d4da22e2f18809bcfbe6fb9d37026fe4812e0

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks