General

  • Target

    0x0008000000023278-401.dat

  • Size

    231KB

  • Sample

    231010-fcvlwsch99

  • MD5

    ef28bbe8eae7a03c251ecdc82e38a495

  • SHA1

    5f6b9ef2126a82161bad1ec74e9d41527c3a813b

  • SHA256

    9bc519af7e75aa1c089f69364f4788589a1476cfeda55ea4125db819cf909787

  • SHA512

    e2556a9e9e4c34b42adbc8cb30f9dc0bd770f9f8025281ca704baa6411b54c611137120a63ab290e2ca9d6be9aa1e43250c8452ea25ad997e3d9d01b75decf1b

  • SSDEEP

    3072:sgspAnCNgcepupXKLh8DjV7OGt/qasDrTv+mIqd44oKG6g:jOACNgceQpXKLKdr/ODrTmmpd44oK

Malware Config

Extracted

Family

redline

Botnet

gigant

C2

77.91.124.55:19071

Targets

    • Target

      0x0008000000023278-401.dat

    • Size

      231KB

    • MD5

      ef28bbe8eae7a03c251ecdc82e38a495

    • SHA1

      5f6b9ef2126a82161bad1ec74e9d41527c3a813b

    • SHA256

      9bc519af7e75aa1c089f69364f4788589a1476cfeda55ea4125db819cf909787

    • SHA512

      e2556a9e9e4c34b42adbc8cb30f9dc0bd770f9f8025281ca704baa6411b54c611137120a63ab290e2ca9d6be9aa1e43250c8452ea25ad997e3d9d01b75decf1b

    • SSDEEP

      3072:sgspAnCNgcepupXKLh8DjV7OGt/qasDrTv+mIqd44oKG6g:jOACNgceQpXKLKdr/ODrTmmpd44oK

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

MITRE ATT&CK Matrix

Tasks