General

  • Target

    97e7e5bba4715e2fd38f61fc2251bf471bb90281627561d91191c4f9eaadc2fa

  • Size

    336KB

  • Sample

    241110-t7ytpaznft

  • MD5

    f8b9b8c93c203db5b93380f6d913b432

  • SHA1

    0e198f6b2e4a55441896f92007056dcad933e1e0

  • SHA256

    97e7e5bba4715e2fd38f61fc2251bf471bb90281627561d91191c4f9eaadc2fa

  • SHA512

    353a49ab0696329ce47d2a7fd5c1ba90d55727adf702e282a1cda12a84c1a8fa6a3d494e5948c27749d709e0c0f8922c14db69fb187e047c5a7722380949667e

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      97e7e5bba4715e2fd38f61fc2251bf471bb90281627561d91191c4f9eaadc2fa

    • Size

      336KB

    • MD5

      f8b9b8c93c203db5b93380f6d913b432

    • SHA1

      0e198f6b2e4a55441896f92007056dcad933e1e0

    • SHA256

      97e7e5bba4715e2fd38f61fc2251bf471bb90281627561d91191c4f9eaadc2fa

    • SHA512

      353a49ab0696329ce47d2a7fd5c1ba90d55727adf702e282a1cda12a84c1a8fa6a3d494e5948c27749d709e0c0f8922c14db69fb187e047c5a7722380949667e

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks