General

  • Target

    81730cf8775d48603ac6e4c8fa31d595866565971c7a6d7d1bbb32fa923dff85

  • Size

    362KB

  • Sample

    230129-wf48haga75

  • MD5

    913cd9d0cfb741ce812c0ab17613357a

  • SHA1

    9f5c37800e9f4eaaca2fdf1b72ae663f2121cc0a

  • SHA256

    81730cf8775d48603ac6e4c8fa31d595866565971c7a6d7d1bbb32fa923dff85

  • SHA512

    0e75ec42bc83830f0e6d2dde793c90dea276feefd1d9fd840073557602081963dcf6b70c5e3946b62f4b6cbf1cab8133bf89ce1258258e9d1c1e68adb3c0575a

  • SSDEEP

    6144:kvBAcKlxINud7fMb4ByTc2tFroSXBr//3QIMrwmCtY64329hgSGoYOSi2HoH:kvBAdfINuRfittFrdxD/FMrHg4QhgSG6

Malware Config

Extracted

Family

redline

Botnet

hack

C2

45.144.31.206:3214

Targets

    • Target

      81730cf8775d48603ac6e4c8fa31d595866565971c7a6d7d1bbb32fa923dff85

    • Size

      362KB

    • MD5

      913cd9d0cfb741ce812c0ab17613357a

    • SHA1

      9f5c37800e9f4eaaca2fdf1b72ae663f2121cc0a

    • SHA256

      81730cf8775d48603ac6e4c8fa31d595866565971c7a6d7d1bbb32fa923dff85

    • SHA512

      0e75ec42bc83830f0e6d2dde793c90dea276feefd1d9fd840073557602081963dcf6b70c5e3946b62f4b6cbf1cab8133bf89ce1258258e9d1c1e68adb3c0575a

    • SSDEEP

      6144:kvBAcKlxINud7fMb4ByTc2tFroSXBr//3QIMrwmCtY64329hgSGoYOSi2HoH:kvBAdfINuRfittFrdxD/FMrHg4QhgSG6

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

MITRE ATT&CK Matrix

Tasks