General

  • Target

    d446e03fa914f4db998cfceae78befaad77251514320e7fa7fdabf6bc3cf321d

  • Size

    338KB

  • Sample

    241111-ma2qraybkc

  • MD5

    e23df31900406e8075aed0285a90096c

  • SHA1

    0ae6552fcb0fc8a231c76a77da0eba10628ee101

  • SHA256

    d446e03fa914f4db998cfceae78befaad77251514320e7fa7fdabf6bc3cf321d

  • SHA512

    2d7a0d36a658978ee5ce98a2fd4604a50e8693ff2e938050b6200d37e1e07e50e586892b84fa4f52d1fd855190283ddf9f660990b4da1b2de50f4b5d4816ea13

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Targets

    • Target

      d446e03fa914f4db998cfceae78befaad77251514320e7fa7fdabf6bc3cf321d

    • Size

      338KB

    • MD5

      e23df31900406e8075aed0285a90096c

    • SHA1

      0ae6552fcb0fc8a231c76a77da0eba10628ee101

    • SHA256

      d446e03fa914f4db998cfceae78befaad77251514320e7fa7fdabf6bc3cf321d

    • SHA512

      2d7a0d36a658978ee5ce98a2fd4604a50e8693ff2e938050b6200d37e1e07e50e586892b84fa4f52d1fd855190283ddf9f660990b4da1b2de50f4b5d4816ea13

    • SSDEEP

      6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks