General

  • Target

    2ddbe468ec508c82731f9d5790544ca4267aa8d8b9e86be4c4dbb272e34ee532

  • Size

    339KB

  • Sample

    241110-etlvmszcpc

  • MD5

    65ad30ded17b21e1bea67dff9bb025ab

  • SHA1

    da2fd9d2723b79fa88e6a5cce82f9b1081d35df1

  • SHA256

    2ddbe468ec508c82731f9d5790544ca4267aa8d8b9e86be4c4dbb272e34ee532

  • SHA512

    f6907f71d4ed160faf19cfb7af6d68d5fb7b17ed4f67a5fee57624fde05f46bf8cef91fde0c6941c8e6fa2ce8429485da556f2d8a4f991a76ac29198a2bcb525

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      2ddbe468ec508c82731f9d5790544ca4267aa8d8b9e86be4c4dbb272e34ee532

    • Size

      339KB

    • MD5

      65ad30ded17b21e1bea67dff9bb025ab

    • SHA1

      da2fd9d2723b79fa88e6a5cce82f9b1081d35df1

    • SHA256

      2ddbe468ec508c82731f9d5790544ca4267aa8d8b9e86be4c4dbb272e34ee532

    • SHA512

      f6907f71d4ed160faf19cfb7af6d68d5fb7b17ed4f67a5fee57624fde05f46bf8cef91fde0c6941c8e6fa2ce8429485da556f2d8a4f991a76ac29198a2bcb525

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks