General

  • Target

    78d1df3a726d79d587e441835dbde2435885ae17cba36e17cde5f23066f910cf

  • Size

    337KB

  • Sample

    241105-tg7znsvdkk

  • MD5

    49285402accb804b38b3d064f71c67df

  • SHA1

    0a469b93c7855b2aca7804d905bf5814ac5f9a11

  • SHA256

    78d1df3a726d79d587e441835dbde2435885ae17cba36e17cde5f23066f910cf

  • SHA512

    31764e08f48eb58e8478e2aadae13ca0889e5a870a2e83307b06450167beb0c305b34ce73ade9ff42f408ffe180f2804aa761cdaa101155c415ea1f5ca46d318

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      78d1df3a726d79d587e441835dbde2435885ae17cba36e17cde5f23066f910cf

    • Size

      337KB

    • MD5

      49285402accb804b38b3d064f71c67df

    • SHA1

      0a469b93c7855b2aca7804d905bf5814ac5f9a11

    • SHA256

      78d1df3a726d79d587e441835dbde2435885ae17cba36e17cde5f23066f910cf

    • SHA512

      31764e08f48eb58e8478e2aadae13ca0889e5a870a2e83307b06450167beb0c305b34ce73ade9ff42f408ffe180f2804aa761cdaa101155c415ea1f5ca46d318

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks