General

  • Target

    97e9d2b926764179bd1a0f6d64575ffa0099cd2299c7419a6ab04146e43a56bd

  • Size

    338KB

  • Sample

    241107-rsca2awnhq

  • MD5

    0da5467e26e1a93e89de1331c8ac9d68

  • SHA1

    a8c61d46b9471b01bb0e98ed1f2a48c042322642

  • SHA256

    97e9d2b926764179bd1a0f6d64575ffa0099cd2299c7419a6ab04146e43a56bd

  • SHA512

    fb25eca836c3d585190aab020315c8fe05743c6f0f32d5ff0e341c8b3ae2e8422ff9a6a19eb6067da43b0cfbe42c914a3ef3c19009df80bf65e3fbadff343c3d

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      97e9d2b926764179bd1a0f6d64575ffa0099cd2299c7419a6ab04146e43a56bd

    • Size

      338KB

    • MD5

      0da5467e26e1a93e89de1331c8ac9d68

    • SHA1

      a8c61d46b9471b01bb0e98ed1f2a48c042322642

    • SHA256

      97e9d2b926764179bd1a0f6d64575ffa0099cd2299c7419a6ab04146e43a56bd

    • SHA512

      fb25eca836c3d585190aab020315c8fe05743c6f0f32d5ff0e341c8b3ae2e8422ff9a6a19eb6067da43b0cfbe42c914a3ef3c19009df80bf65e3fbadff343c3d

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks