General

  • Target

    8a2d8695cbf2aecde114fcd1029a397c348e1e29970f502719cb22c338464871

  • Size

    364KB

  • Sample

    241107-hy6mdszrdl

  • MD5

    bf4978c0a3183be53af1b20fd4564bf2

  • SHA1

    a74df48839c81a0076dcbfc471efe1cd08c9e44b

  • SHA256

    8a2d8695cbf2aecde114fcd1029a397c348e1e29970f502719cb22c338464871

  • SHA512

    1fb43978e20963c42a7b9cc86cb6bd52f97658be35a31dcee20b3e655576d88c4b48621f8771205b1fc30bc13fb5f8fe62f6d5e8fe86cb995137f5c2f0cc2c45

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Targets

    • Target

      8a2d8695cbf2aecde114fcd1029a397c348e1e29970f502719cb22c338464871

    • Size

      364KB

    • MD5

      bf4978c0a3183be53af1b20fd4564bf2

    • SHA1

      a74df48839c81a0076dcbfc471efe1cd08c9e44b

    • SHA256

      8a2d8695cbf2aecde114fcd1029a397c348e1e29970f502719cb22c338464871

    • SHA512

      1fb43978e20963c42a7b9cc86cb6bd52f97658be35a31dcee20b3e655576d88c4b48621f8771205b1fc30bc13fb5f8fe62f6d5e8fe86cb995137f5c2f0cc2c45

    • SSDEEP

      6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks