General

  • Target

    ac0d187d75defc1dd19bcd4f877bcc5ee78420979ef5f50f5e0f669edb25060e

  • Size

    336KB

  • Sample

    241111-ly97csxeqm

  • MD5

    bd6fe90939db1ad443c909f6f9371609

  • SHA1

    1fc125c32102f3b1c948757880ab7cbe9bfdd916

  • SHA256

    ac0d187d75defc1dd19bcd4f877bcc5ee78420979ef5f50f5e0f669edb25060e

  • SHA512

    264e7d40564686cb6b326f688c193e84da31288bf704bcf68138956c6e9e543ae995e9506daf436330a18a0b8f6aacc1616d5b76eac2ed0d7d209982c738d24b

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      ac0d187d75defc1dd19bcd4f877bcc5ee78420979ef5f50f5e0f669edb25060e

    • Size

      336KB

    • MD5

      bd6fe90939db1ad443c909f6f9371609

    • SHA1

      1fc125c32102f3b1c948757880ab7cbe9bfdd916

    • SHA256

      ac0d187d75defc1dd19bcd4f877bcc5ee78420979ef5f50f5e0f669edb25060e

    • SHA512

      264e7d40564686cb6b326f688c193e84da31288bf704bcf68138956c6e9e543ae995e9506daf436330a18a0b8f6aacc1616d5b76eac2ed0d7d209982c738d24b

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks