General

  • Target

    291229efb5e342a662db981eb8361e04e78d0773f11e4d25bf43deab53c7ea55

  • Size

    340KB

  • Sample

    241111-lmqctawqc1

  • MD5

    476f58d6351c6c840f919f2550923e9e

  • SHA1

    681c223afe28cd1794ce5e0796d8cc25df9e530c

  • SHA256

    291229efb5e342a662db981eb8361e04e78d0773f11e4d25bf43deab53c7ea55

  • SHA512

    eab25d567c28dd7b0d3764cf0bbaa6a881a3217a4874eb6b12e31ddbffba5509aadf7930562fe8c4bf5e0b3256faaca9b7aed1118031c4637cdf9c1651a82fa0

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      291229efb5e342a662db981eb8361e04e78d0773f11e4d25bf43deab53c7ea55

    • Size

      340KB

    • MD5

      476f58d6351c6c840f919f2550923e9e

    • SHA1

      681c223afe28cd1794ce5e0796d8cc25df9e530c

    • SHA256

      291229efb5e342a662db981eb8361e04e78d0773f11e4d25bf43deab53c7ea55

    • SHA512

      eab25d567c28dd7b0d3764cf0bbaa6a881a3217a4874eb6b12e31ddbffba5509aadf7930562fe8c4bf5e0b3256faaca9b7aed1118031c4637cdf9c1651a82fa0

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks