General

  • Target

    d8ab109aa842773b93087ef0f56705ef4fa1980ee7ca076d24eec447cb63a3b3

  • Size

    339KB

  • Sample

    241107-tl5ecavhlm

  • MD5

    8d39008536008f986513893f3675f3af

  • SHA1

    4d7c8a0d3a3a81553091498722f5553ad2d43fc0

  • SHA256

    d8ab109aa842773b93087ef0f56705ef4fa1980ee7ca076d24eec447cb63a3b3

  • SHA512

    fdd8b6072b6436a2743177742bf9f4823e49df35be54d26c5bff36d1acf9ea05ff4fc063afbe9ab981641e4de3e462c632c60e38432a58c85794582736eac351

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      d8ab109aa842773b93087ef0f56705ef4fa1980ee7ca076d24eec447cb63a3b3

    • Size

      339KB

    • MD5

      8d39008536008f986513893f3675f3af

    • SHA1

      4d7c8a0d3a3a81553091498722f5553ad2d43fc0

    • SHA256

      d8ab109aa842773b93087ef0f56705ef4fa1980ee7ca076d24eec447cb63a3b3

    • SHA512

      fdd8b6072b6436a2743177742bf9f4823e49df35be54d26c5bff36d1acf9ea05ff4fc063afbe9ab981641e4de3e462c632c60e38432a58c85794582736eac351

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks