General

  • Target

    Offscum.exe

  • Size

    379KB

  • Sample

    220525-14a2saeag5

  • MD5

    d1b3425d48340279588608d92ca2722b

  • SHA1

    bbed613200e5c34785bd32aa3b6d8fa6f0c5c1bf

  • SHA256

    d6ca1a3e3a0088c5b44ad94dcdc9400870f469e29abbb3428bb99425b82bfa19

  • SHA512

    7464be8f4e30db696fd1902c5452f7c729ac24979a1a690053dfbbed513d9f4d406a172bfe77d28421c354653c25f986bfdfdf532db0cf1a87a951a596f88772

Malware Config

Extracted

Family

redline

Botnet

test1

C2

185.215.113.75:80

Attributes
  • auth_value

    7ab4a4e2eae9eb7ae10f64f68df53bb3

Targets

    • Target

      Offscum.exe

    • Size

      379KB

    • MD5

      d1b3425d48340279588608d92ca2722b

    • SHA1

      bbed613200e5c34785bd32aa3b6d8fa6f0c5c1bf

    • SHA256

      d6ca1a3e3a0088c5b44ad94dcdc9400870f469e29abbb3428bb99425b82bfa19

    • SHA512

      7464be8f4e30db696fd1902c5452f7c729ac24979a1a690053dfbbed513d9f4d406a172bfe77d28421c354653c25f986bfdfdf532db0cf1a87a951a596f88772

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

MITRE ATT&CK Matrix

Tasks