General

  • Target

    1848e20a8c6f3985e12b24673c3392f9432087d578a881d41a97e61a89a1993a

  • Size

    337KB

  • Sample

    241107-bzw11ssgqj

  • MD5

    bbd005b83ee4934462dc0fb4e3ec35ad

  • SHA1

    c5c6e29eb5d5bb36dba323c9a99c537b3ce34b87

  • SHA256

    1848e20a8c6f3985e12b24673c3392f9432087d578a881d41a97e61a89a1993a

  • SHA512

    a275b8e08d580b34641eedd4627b08472b4477733c12e8a93b668cb42a42c541cf4830f22edddd4d76f29f6c663877907e4cb6b3c85820879fed0e9a23148497

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      1848e20a8c6f3985e12b24673c3392f9432087d578a881d41a97e61a89a1993a

    • Size

      337KB

    • MD5

      bbd005b83ee4934462dc0fb4e3ec35ad

    • SHA1

      c5c6e29eb5d5bb36dba323c9a99c537b3ce34b87

    • SHA256

      1848e20a8c6f3985e12b24673c3392f9432087d578a881d41a97e61a89a1993a

    • SHA512

      a275b8e08d580b34641eedd4627b08472b4477733c12e8a93b668cb42a42c541cf4830f22edddd4d76f29f6c663877907e4cb6b3c85820879fed0e9a23148497

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks