General

  • Target

    a55ac1675024fe2364102cd1410ec105b443d0c866d68ee7cf3a5ba060d90e5b

  • Size

    106KB

  • Sample

    240523-br1z1agf35

  • MD5

    757d53805846243e6e7e67d8ec6d0950

  • SHA1

    cca21bba69b60085fa0b1d59b4696c1d53f61308

  • SHA256

    a55ac1675024fe2364102cd1410ec105b443d0c866d68ee7cf3a5ba060d90e5b

  • SHA512

    4a33001fc9ee00fcedb477a3dd3d6249392b9878ff12d263bac9602f3ad62576842f138e1b1d8e376a08c55ebb18f3b98c8d6ac7bc3bdcd4f3a05fd9c6f23e18

  • SSDEEP

    1536:FOpG0Ad02HDgzfdqKbN1gYg6mxcis2bZDKAn0jBobx4J9C00Ien:FOpLA9HDAfdByYg6mxHvDSOsIio

Malware Config

Extracted

Family

redline

Botnet

1612

C2

95.217.35.153:9678

Attributes
  • auth_value

    b5a5176fed2f09773f56b63ef46db825

Targets

    • Target

      a55ac1675024fe2364102cd1410ec105b443d0c866d68ee7cf3a5ba060d90e5b

    • Size

      106KB

    • MD5

      757d53805846243e6e7e67d8ec6d0950

    • SHA1

      cca21bba69b60085fa0b1d59b4696c1d53f61308

    • SHA256

      a55ac1675024fe2364102cd1410ec105b443d0c866d68ee7cf3a5ba060d90e5b

    • SHA512

      4a33001fc9ee00fcedb477a3dd3d6249392b9878ff12d263bac9602f3ad62576842f138e1b1d8e376a08c55ebb18f3b98c8d6ac7bc3bdcd4f3a05fd9c6f23e18

    • SSDEEP

      1536:FOpG0Ad02HDgzfdqKbN1gYg6mxcis2bZDKAn0jBobx4J9C00Ien:FOpLA9HDAfdByYg6mxHvDSOsIio

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

MITRE ATT&CK Matrix

Tasks