General

  • Target

    eacbf9e0546a287296a15fe8edb1615f2ef9cf2ff54d8e48033c2d7dff17b494

  • Size

    337KB

  • Sample

    241105-r12kwstdrp

  • MD5

    f6de275ec6c3dd9c69b95bfbd2584b20

  • SHA1

    90f8cfcb891e4aa6dfdabee5f7d818239b578f42

  • SHA256

    eacbf9e0546a287296a15fe8edb1615f2ef9cf2ff54d8e48033c2d7dff17b494

  • SHA512

    bb0559510f358e0cd88aa0ab3c6b3794499cf0e302238efd96a438008439bcbd73937b6bb6ef626a9c1b99d9d4b3c62586a614a941b6a6fa052135c7f17b0f06

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      eacbf9e0546a287296a15fe8edb1615f2ef9cf2ff54d8e48033c2d7dff17b494

    • Size

      337KB

    • MD5

      f6de275ec6c3dd9c69b95bfbd2584b20

    • SHA1

      90f8cfcb891e4aa6dfdabee5f7d818239b578f42

    • SHA256

      eacbf9e0546a287296a15fe8edb1615f2ef9cf2ff54d8e48033c2d7dff17b494

    • SHA512

      bb0559510f358e0cd88aa0ab3c6b3794499cf0e302238efd96a438008439bcbd73937b6bb6ef626a9c1b99d9d4b3c62586a614a941b6a6fa052135c7f17b0f06

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks