General

  • Target

    b0e1dd60ef1b753a68e6534bd76112d6d6a84891d7c3719c24cd228695b2ca83

  • Size

    338KB

  • Sample

    241110-bn7ndayqep

  • MD5

    f03fe090f63112aa02c4e9239ea086bd

  • SHA1

    17996a049734a607ef71c7e55c8a4ce1cf76fee8

  • SHA256

    b0e1dd60ef1b753a68e6534bd76112d6d6a84891d7c3719c24cd228695b2ca83

  • SHA512

    5a4bb88df73904d01e53dfd98e63052fe3357e898725f601bfe1dcb4eb82e0a0a0265d03be9689419a5602f565a742b614ef550ffd0e777e7e70081acee4c283

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      b0e1dd60ef1b753a68e6534bd76112d6d6a84891d7c3719c24cd228695b2ca83

    • Size

      338KB

    • MD5

      f03fe090f63112aa02c4e9239ea086bd

    • SHA1

      17996a049734a607ef71c7e55c8a4ce1cf76fee8

    • SHA256

      b0e1dd60ef1b753a68e6534bd76112d6d6a84891d7c3719c24cd228695b2ca83

    • SHA512

      5a4bb88df73904d01e53dfd98e63052fe3357e898725f601bfe1dcb4eb82e0a0a0265d03be9689419a5602f565a742b614ef550ffd0e777e7e70081acee4c283

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks