General

  • Target

    679c78c95618579be0e840338e788bc36b435b865bbce589d54d527e5ba980d6

  • Size

    390KB

  • Sample

    220625-wn6rasgfe7

  • MD5

    b68b05adfb7f2e4ebb788891692bbc2e

  • SHA1

    30be02b4f78c80d7cfa60bd3f3a06b49ea96d175

  • SHA256

    679c78c95618579be0e840338e788bc36b435b865bbce589d54d527e5ba980d6

  • SHA512

    3fc1ffeb219909f8e89267552114e6d1a8d12d338e2108d99fac8e794aeaf0c764d53f9358bf17e63377920d4720df398ea235b5e6c98c6d9bbaade3e2829b06

Malware Config

Extracted

Family

redline

Botnet

RUZKI

C2

193.106.191.246:23196

Attributes
  • auth_value

    121027c094f768a0a0e9b562f6417952

Targets

    • Target

      679c78c95618579be0e840338e788bc36b435b865bbce589d54d527e5ba980d6

    • Size

      390KB

    • MD5

      b68b05adfb7f2e4ebb788891692bbc2e

    • SHA1

      30be02b4f78c80d7cfa60bd3f3a06b49ea96d175

    • SHA256

      679c78c95618579be0e840338e788bc36b435b865bbce589d54d527e5ba980d6

    • SHA512

      3fc1ffeb219909f8e89267552114e6d1a8d12d338e2108d99fac8e794aeaf0c764d53f9358bf17e63377920d4720df398ea235b5e6c98c6d9bbaade3e2829b06

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

MITRE ATT&CK Matrix

Tasks