General

  • Target

    0x00060000000231fa-101.dat

  • Size

    231KB

  • Sample

    231016-mwz42sde5y

  • MD5

    24f6f1dd4fee0ec3cbb5540846899d40

  • SHA1

    e150735d74cccf5400eeed7d60a506944ea767a4

  • SHA256

    5d6d804b76a6109eb05f49c4b12dd87fcae5c8c03742fe4df472db6e194b0582

  • SHA512

    cc7cac2398f3edb59a10d3ec8f092606060d2c00e9238fcb936e1a15484b070dd46aa3051af1a250912b8b49014262d09d6397cfdb8b7b5ca2f81a6e72f52cc1

  • SSDEEP

    3072:sgspAnCNgcepupXKLh8DjV7OGt/qasDrTv+mIqd44oKG6g:jOACNgceQpXKLKdr/ODrTmmpd44oK

Malware Config

Extracted

Family

redline

Botnet

gigant

C2

77.91.124.55:19071

Targets

    • Target

      0x00060000000231fa-101.dat

    • Size

      231KB

    • MD5

      24f6f1dd4fee0ec3cbb5540846899d40

    • SHA1

      e150735d74cccf5400eeed7d60a506944ea767a4

    • SHA256

      5d6d804b76a6109eb05f49c4b12dd87fcae5c8c03742fe4df472db6e194b0582

    • SHA512

      cc7cac2398f3edb59a10d3ec8f092606060d2c00e9238fcb936e1a15484b070dd46aa3051af1a250912b8b49014262d09d6397cfdb8b7b5ca2f81a6e72f52cc1

    • SSDEEP

      3072:sgspAnCNgcepupXKLh8DjV7OGt/qasDrTv+mIqd44oKG6g:jOACNgceQpXKLKdr/ODrTmmpd44oK

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

MITRE ATT&CK Matrix

Tasks