General

  • Target

    fbeb9166b33a55dd048792ac74b0fe5faf997aef3facb452bcd6bfa411d8b48c

  • Size

    336KB

  • Sample

    241106-ldlchaybjk

  • MD5

    4cc2ee100954a9b84b5e71d8ecf8e245

  • SHA1

    a3f396de8048dd528b1c126fc4600f18c002ccc3

  • SHA256

    fbeb9166b33a55dd048792ac74b0fe5faf997aef3facb452bcd6bfa411d8b48c

  • SHA512

    1573d35d7a979f0742b039db3be1943d82dc61595eb354c547b1d52fc6a7a9dfdcdeac883454d7e68cfedd75012d2bfa07d9958c8f0823d5c0340251387b038d

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      fbeb9166b33a55dd048792ac74b0fe5faf997aef3facb452bcd6bfa411d8b48c

    • Size

      336KB

    • MD5

      4cc2ee100954a9b84b5e71d8ecf8e245

    • SHA1

      a3f396de8048dd528b1c126fc4600f18c002ccc3

    • SHA256

      fbeb9166b33a55dd048792ac74b0fe5faf997aef3facb452bcd6bfa411d8b48c

    • SHA512

      1573d35d7a979f0742b039db3be1943d82dc61595eb354c547b1d52fc6a7a9dfdcdeac883454d7e68cfedd75012d2bfa07d9958c8f0823d5c0340251387b038d

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks