General

  • Target

    46961f1cec482ed8bef742159eb5982f89eb5c8c1f1d05867a09df6d2def4ab2

  • Size

    337KB

  • Sample

    241110-rqsj8syeng

  • MD5

    f9ab4cf6ae2001a66d787358dc825e9e

  • SHA1

    9201f9a693031b2d687bd2c63cebe2808ad074b9

  • SHA256

    46961f1cec482ed8bef742159eb5982f89eb5c8c1f1d05867a09df6d2def4ab2

  • SHA512

    23367c49503f9494d0d2e8ba7c630e3522a402a2757f32fbb61e7337058b458f9c445cf49bb64142300ff69d805852109b113488ca651a157e2c3be8525f4d1e

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      46961f1cec482ed8bef742159eb5982f89eb5c8c1f1d05867a09df6d2def4ab2

    • Size

      337KB

    • MD5

      f9ab4cf6ae2001a66d787358dc825e9e

    • SHA1

      9201f9a693031b2d687bd2c63cebe2808ad074b9

    • SHA256

      46961f1cec482ed8bef742159eb5982f89eb5c8c1f1d05867a09df6d2def4ab2

    • SHA512

      23367c49503f9494d0d2e8ba7c630e3522a402a2757f32fbb61e7337058b458f9c445cf49bb64142300ff69d805852109b113488ca651a157e2c3be8525f4d1e

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks