General

  • Target

    72609bb8cf0c6e7770dbf9fc07a944ac643f544ea2f422c44bb5547181be50d2

  • Size

    339KB

  • Sample

    241110-xrhpbatbmf

  • MD5

    833a26e4050ec71823563bb521ea9982

  • SHA1

    a7039f81e12d832d0559700d443f48952961baaf

  • SHA256

    72609bb8cf0c6e7770dbf9fc07a944ac643f544ea2f422c44bb5547181be50d2

  • SHA512

    3fece0959590ca30cfabc5ef61920e866ce17a5ef89b0829a8ff244d07a58f61b740eb7c709d8bbcfe5efa6d59e9b7e7ed0e34a1b8f6ae808cfd6eb5c3396dee

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      72609bb8cf0c6e7770dbf9fc07a944ac643f544ea2f422c44bb5547181be50d2

    • Size

      339KB

    • MD5

      833a26e4050ec71823563bb521ea9982

    • SHA1

      a7039f81e12d832d0559700d443f48952961baaf

    • SHA256

      72609bb8cf0c6e7770dbf9fc07a944ac643f544ea2f422c44bb5547181be50d2

    • SHA512

      3fece0959590ca30cfabc5ef61920e866ce17a5ef89b0829a8ff244d07a58f61b740eb7c709d8bbcfe5efa6d59e9b7e7ed0e34a1b8f6ae808cfd6eb5c3396dee

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks