General

  • Target

    e327e3904749f307c3975d743473aa31fe9608a2c9e3f99a5ed30ae3fb1d8c85

  • Size

    395KB

  • Sample

    210726-erd8qhywgn

  • MD5

    7ed5afc773f5c98e25695756d24865f6

  • SHA1

    2e5356b86fd417fe12897474cb2fd44381ab31b2

  • SHA256

    e327e3904749f307c3975d743473aa31fe9608a2c9e3f99a5ed30ae3fb1d8c85

  • SHA512

    ee3b5336d34e3e88c86197a5c57b66efedecfb5f6aee89fa218e360d88a0ff83298f21c74f76f9e76db2c3d1fc43bd7ff7f7acae4e6eec745d39823b09659e5d

Malware Config

Extracted

Family

redline

Botnet

SewPalpadin

C2

185.215.113.114:8887

Targets

    • Target

      e327e3904749f307c3975d743473aa31fe9608a2c9e3f99a5ed30ae3fb1d8c85

    • Size

      395KB

    • MD5

      7ed5afc773f5c98e25695756d24865f6

    • SHA1

      2e5356b86fd417fe12897474cb2fd44381ab31b2

    • SHA256

      e327e3904749f307c3975d743473aa31fe9608a2c9e3f99a5ed30ae3fb1d8c85

    • SHA512

      ee3b5336d34e3e88c86197a5c57b66efedecfb5f6aee89fa218e360d88a0ff83298f21c74f76f9e76db2c3d1fc43bd7ff7f7acae4e6eec745d39823b09659e5d

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine Payload

MITRE ATT&CK Matrix

Tasks