General

  • Target

    file

  • Size

    393KB

  • Sample

    230201-jgd2gscd54

  • MD5

    a746db0666bd903ca4f7f4307eef001f

  • SHA1

    4e91316e4e0a56715a5c490e6aa6caa884be7e9f

  • SHA256

    b7faa830bc27b78d800f502287390de670583aede841d9b6579b3aa311718d22

  • SHA512

    e54217f2852ce1f476a748135779363ef2ab7835d7abab45b5c6a69bef5229c0f29db87c67626c8663d3e4851f605b63baf769cf8cab4e3296b985f1f2a6a85d

  • SSDEEP

    6144:aZLzCvNWEqqymJLQV5ARBYs+Ti94S+Elea2s1tGCGFTPJwIqA7KQu55u:qnQNkgJkkcT22+tGxZKd57/u

Score
10/10

Malware Config

Extracted

Family

redline

Botnet

1

C2

138.124.183.137:48862

Attributes
  • auth_value

    63347a605fdd4b113180332821529963

Targets

    • Target

      file

    • Size

      393KB

    • MD5

      a746db0666bd903ca4f7f4307eef001f

    • SHA1

      4e91316e4e0a56715a5c490e6aa6caa884be7e9f

    • SHA256

      b7faa830bc27b78d800f502287390de670583aede841d9b6579b3aa311718d22

    • SHA512

      e54217f2852ce1f476a748135779363ef2ab7835d7abab45b5c6a69bef5229c0f29db87c67626c8663d3e4851f605b63baf769cf8cab4e3296b985f1f2a6a85d

    • SSDEEP

      6144:aZLzCvNWEqqymJLQV5ARBYs+Ti94S+Elea2s1tGCGFTPJwIqA7KQu55u:qnQNkgJkkcT22+tGxZKd57/u

    Score
    10/10
    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

MITRE ATT&CK Matrix

Tasks