redline | a117756a9333b159f8519dd5a03283edd9f7c25061c5be22fea0a53414f9acf8 | Triage

Sharing

General

Target

5016-194-0x0000000000400000-0x0000000000436000-memory.dmp
Size

216KB
Sample

221112-rx47lsgc94
MD5

6dcc8d04e15f4252b2d2625de75b081d
SHA1

28e199efa99cdfd78ee14cef84752dbac5363c67
SHA256

a117756a9333b159f8519dd5a03283edd9f7c25061c5be22fea0a53414f9acf8
SHA512

a4ceaf71711af5befc1a406d2ad2a3bfce7e074b7a26f8ce4345343895ca3f4f0160a137364566ac8366ce4028edff026a20c8e43e94d85dbf64e8883c258ddf
SSDEEP

1536:EYg5a+WH7c1rCfKK3gLWqKCeGEbXEeLgyuMMpzurBtsadOUw1y/pbYY3G5:YXS7rTgLWyc0cVupKskrhpPG5

Score

10^/10

redline @andriii_f

Malware Config

Extracted

Family

redline

Botnet

@andriii_f

C2

185.173.36.94:31511

Attributes

auth_value
6eb1d25f0a98fab37914f41dd85e7bb0

Targets

- Target
  
  5016-194-0x0000000000400000-0x0000000000436000-memory.dmp
- Size
  
  216KB
- MD5
  
  6dcc8d04e15f4252b2d2625de75b081d
- SHA1
  
  28e199efa99cdfd78ee14cef84752dbac5363c67
- SHA256
  
  a117756a9333b159f8519dd5a03283edd9f7c25061c5be22fea0a53414f9acf8
- SHA512
  
  a4ceaf71711af5befc1a406d2ad2a3bfce7e074b7a26f8ce4345343895ca3f4f0160a137364566ac8366ce4028edff026a20c8e43e94d85dbf64e8883c258ddf
- SSDEEP
  
  1536:EYg5a+WH7c1rCfKK3gLWqKCeGEbXEeLgyuMMpzurBtsadOUw1y/pbYY3G5:YXS7rTgLWyc0cVupKskrhpPG5
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

@andriii_fredline

behavioral1

behavioral2