General

  • Target

    0ba0822bba983f435707dc3aacd41f64c1b143102111079c0f66884ea9dc2536

  • Size

    339KB

  • Sample

    241107-svysgsvdnl

  • MD5

    c98ed26e7a0b88e19edc001830784588

  • SHA1

    dda670b02ee8b0e94e6bdc4dce62b2a83583e3c5

  • SHA256

    0ba0822bba983f435707dc3aacd41f64c1b143102111079c0f66884ea9dc2536

  • SHA512

    4ceee4d3c25f753109711f0af6575a72202d6a581640723cb0a95290568881f905b39099af7ee49c8a2ce3141683fa704a6438c8c87f63f71711a826f8db53e8

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      0ba0822bba983f435707dc3aacd41f64c1b143102111079c0f66884ea9dc2536

    • Size

      339KB

    • MD5

      c98ed26e7a0b88e19edc001830784588

    • SHA1

      dda670b02ee8b0e94e6bdc4dce62b2a83583e3c5

    • SHA256

      0ba0822bba983f435707dc3aacd41f64c1b143102111079c0f66884ea9dc2536

    • SHA512

      4ceee4d3c25f753109711f0af6575a72202d6a581640723cb0a95290568881f905b39099af7ee49c8a2ce3141683fa704a6438c8c87f63f71711a826f8db53e8

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks