General

  • Target

    960dabeaba026a8f3dd5bb4804bbc3a6

  • Size

    283KB

  • Sample

    211105-ak2ghsaad9

  • MD5

    960dabeaba026a8f3dd5bb4804bbc3a6

  • SHA1

    93d1996201367201272951680da7341d1ba6b0e9

  • SHA256

    1cecdad060bd49501aca8560f70a1dafda7de6d1482a30f18902787ee860c1bd

  • SHA512

    792375ceb92ffd7f78991db711728b146d91a0ef7d36aab102d49915619e5f064689b84c6c24c4f6db2054bbf3987178f3eb15fa50a7fb12a717fa2cb1fb0aec

Malware Config

Extracted

Family

redline

Botnet

khrip

C2

91.211.251.200:52562

Targets

    • Target

      960dabeaba026a8f3dd5bb4804bbc3a6

    • Size

      283KB

    • MD5

      960dabeaba026a8f3dd5bb4804bbc3a6

    • SHA1

      93d1996201367201272951680da7341d1ba6b0e9

    • SHA256

      1cecdad060bd49501aca8560f70a1dafda7de6d1482a30f18902787ee860c1bd

    • SHA512

      792375ceb92ffd7f78991db711728b146d91a0ef7d36aab102d49915619e5f064689b84c6c24c4f6db2054bbf3987178f3eb15fa50a7fb12a717fa2cb1fb0aec

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine Payload

MITRE ATT&CK Matrix

Tasks