General

  • Target

    493b097636e94f88f31485f6603c08c7160b290abf54a3e0e0c6f588cc911cb9

  • Size

    339KB

  • Sample

    241105-qz2c3a1nhs

  • MD5

    458a09fc40713deb2f78cbb2d8a3c157

  • SHA1

    449e999ba6710409c9bf7be77049717c48d91494

  • SHA256

    493b097636e94f88f31485f6603c08c7160b290abf54a3e0e0c6f588cc911cb9

  • SHA512

    eb85abe50483cd853fcd2bd4280b3ab5a9d273a5aae8b9017d380e2cf5d5244849c7651f5df47ce45f827ef75e37f0ed181377241aa0e0cca865fea078efffb3

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      493b097636e94f88f31485f6603c08c7160b290abf54a3e0e0c6f588cc911cb9

    • Size

      339KB

    • MD5

      458a09fc40713deb2f78cbb2d8a3c157

    • SHA1

      449e999ba6710409c9bf7be77049717c48d91494

    • SHA256

      493b097636e94f88f31485f6603c08c7160b290abf54a3e0e0c6f588cc911cb9

    • SHA512

      eb85abe50483cd853fcd2bd4280b3ab5a9d273a5aae8b9017d380e2cf5d5244849c7651f5df47ce45f827ef75e37f0ed181377241aa0e0cca865fea078efffb3

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks