General

  • Target

    45c86115d68345268b0aeaf440509b66937a0586a43b28ce9c1c686133ecb9dc

  • Size

    340KB

  • Sample

    241107-nknsba1gpp

  • MD5

    948482478c01ec3dfd0b4c3cf8d7ae17

  • SHA1

    471a833f48a4c0acc9e81febe04e7f02eb176429

  • SHA256

    45c86115d68345268b0aeaf440509b66937a0586a43b28ce9c1c686133ecb9dc

  • SHA512

    8560809cddf7b0009b2914777cf8255109fcfe8a3d96c26c84501323ea6d42ed6bbf624f7a3cc82f346b65d7cf74e17a6405e18c618bf446b1aa2390f6fa4e04

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      45c86115d68345268b0aeaf440509b66937a0586a43b28ce9c1c686133ecb9dc

    • Size

      340KB

    • MD5

      948482478c01ec3dfd0b4c3cf8d7ae17

    • SHA1

      471a833f48a4c0acc9e81febe04e7f02eb176429

    • SHA256

      45c86115d68345268b0aeaf440509b66937a0586a43b28ce9c1c686133ecb9dc

    • SHA512

      8560809cddf7b0009b2914777cf8255109fcfe8a3d96c26c84501323ea6d42ed6bbf624f7a3cc82f346b65d7cf74e17a6405e18c618bf446b1aa2390f6fa4e04

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks