General

  • Target

    ada8783da1697b2b1b0d418f7ac208ee3461c02b

  • Size

    364KB

  • Sample

    241106-xx5q2awcqg

  • MD5

    642212b1941ee7f0fb1752e00342386f

  • SHA1

    ada8783da1697b2b1b0d418f7ac208ee3461c02b

  • SHA256

    3ae21ac388f7091e4cbbeb714cd687cec0b35bd4e2eadf477384c2aee43edb25

  • SHA512

    62df90570854c32584f92834452480c578cec433d354b79b62757abc93417839e38f89965fbbeaac5a949e2f168e1d1611d2691b1c15e559f9be9fb9a6bb0a54

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Targets

    • Target

      ada8783da1697b2b1b0d418f7ac208ee3461c02b

    • Size

      364KB

    • MD5

      642212b1941ee7f0fb1752e00342386f

    • SHA1

      ada8783da1697b2b1b0d418f7ac208ee3461c02b

    • SHA256

      3ae21ac388f7091e4cbbeb714cd687cec0b35bd4e2eadf477384c2aee43edb25

    • SHA512

      62df90570854c32584f92834452480c578cec433d354b79b62757abc93417839e38f89965fbbeaac5a949e2f168e1d1611d2691b1c15e559f9be9fb9a6bb0a54

    • SSDEEP

      6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks