General

  • Target

    1131717923a6ed6529b1a51ab77aa7128e18a67989938073602de5f776b4e1cb

  • Size

    107KB

  • Sample

    220604-j43claege8

  • MD5

    5db217e32cfb326a9428601d3b487757

  • SHA1

    ae9c2b1bbd494d75f3d2b29c59281578b75023e6

  • SHA256

    1131717923a6ed6529b1a51ab77aa7128e18a67989938073602de5f776b4e1cb

  • SHA512

    9ddb4de3bd7b458b018e27210b8f34d93eb16e40c4e188dacc36a70e3eff53c5d7d28240f3085437abb82f5e1e7885e7d4863235a2628c40c8be0dca5e15c9ea

Malware Config

Extracted

Family

redline

Botnet

ISTALL1

C2

86.107.197.196:63065

Attributes
  • auth_value

    5fe37244c13b89671311b4f994adce81

Targets

    • Target

      1131717923a6ed6529b1a51ab77aa7128e18a67989938073602de5f776b4e1cb

    • Size

      107KB

    • MD5

      5db217e32cfb326a9428601d3b487757

    • SHA1

      ae9c2b1bbd494d75f3d2b29c59281578b75023e6

    • SHA256

      1131717923a6ed6529b1a51ab77aa7128e18a67989938073602de5f776b4e1cb

    • SHA512

      9ddb4de3bd7b458b018e27210b8f34d93eb16e40c4e188dacc36a70e3eff53c5d7d28240f3085437abb82f5e1e7885e7d4863235a2628c40c8be0dca5e15c9ea

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine Payload

MITRE ATT&CK Matrix

Tasks