General

  • Target

    0x00060000000232c2-319.dat

  • Size

    230KB

  • Sample

    231008-f8kfssce48

  • MD5

    ecc49f0f67a6a13a38726e4082a2902b

  • SHA1

    0de0821b14f74f3cdedf993bce4182b6ed083bed

  • SHA256

    d61d3a2b7baf50caa24b8c3c5078f697fb7a1d293013430c1a547c3a95e2bda3

  • SHA512

    b4ace6e551a1647e70811ecbad665a0254e9714a69ec02777af9e544cfb5374d0bbc3c592dafbb72876bb3a017722f8ca574882cacadd81d8b937a5df73e4915

  • SSDEEP

    3072:sgspAnCNgcepupXKLh8DjV7OGt/qasDrTv+mIqd44oKG6g:jOACNgceQpXKLKdr/ODrTmmpd44oK

Malware Config

Extracted

Family

redline

Botnet

gigant

C2

77.91.124.55:19071

Targets

    • Target

      0x00060000000232c2-319.dat

    • Size

      230KB

    • MD5

      ecc49f0f67a6a13a38726e4082a2902b

    • SHA1

      0de0821b14f74f3cdedf993bce4182b6ed083bed

    • SHA256

      d61d3a2b7baf50caa24b8c3c5078f697fb7a1d293013430c1a547c3a95e2bda3

    • SHA512

      b4ace6e551a1647e70811ecbad665a0254e9714a69ec02777af9e544cfb5374d0bbc3c592dafbb72876bb3a017722f8ca574882cacadd81d8b937a5df73e4915

    • SSDEEP

      3072:sgspAnCNgcepupXKLh8DjV7OGt/qasDrTv+mIqd44oKG6g:jOACNgceQpXKLKdr/ODrTmmpd44oK

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

MITRE ATT&CK Matrix

Tasks