General

  • Target

    6544b0bc48a25d967504decd9cfeefab8db69238434ac6bd1408abe033b28075

  • Size

    336KB

  • Sample

    241110-f5t6ts1ajj

  • MD5

    ce2d5968f79d54ddb06b59d63d1a0c73

  • SHA1

    781e92fc5ec146843162c7baf3176df4e5c8bf58

  • SHA256

    6544b0bc48a25d967504decd9cfeefab8db69238434ac6bd1408abe033b28075

  • SHA512

    0ffddd9eb501adc5dd836370736a60686871e4a5dbb11e519d87ab392c078eb5fba73236c03756ea96879333b7386d05b3a019702853c8084c1e8dbd4c6e48e8

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      6544b0bc48a25d967504decd9cfeefab8db69238434ac6bd1408abe033b28075

    • Size

      336KB

    • MD5

      ce2d5968f79d54ddb06b59d63d1a0c73

    • SHA1

      781e92fc5ec146843162c7baf3176df4e5c8bf58

    • SHA256

      6544b0bc48a25d967504decd9cfeefab8db69238434ac6bd1408abe033b28075

    • SHA512

      0ffddd9eb501adc5dd836370736a60686871e4a5dbb11e519d87ab392c078eb5fba73236c03756ea96879333b7386d05b3a019702853c8084c1e8dbd4c6e48e8

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks