General

  • Target

    8b36f5824b126a47aea662d562e5b542

  • Size

    363KB

  • Sample

    241107-kfn1qs1qfr

  • MD5

    8b36f5824b126a47aea662d562e5b542

  • SHA1

    891481524b9bc1485506fcefb84f2d20ad9010ec

  • SHA256

    91fc2b7aa9342f74e956b64db6b717ab2a30bb0485c2c9d1f2562faceb037f4c

  • SHA512

    81b0de80244307ffea68293b8e57336794b6d078361cb1ed8aa4dae49509bfbcf4b185647a80b543a1bb4348817c091bf62c2282f1b387d9d40488bf645f1c4e

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Targets

    • Target

      8b36f5824b126a47aea662d562e5b542

    • Size

      363KB

    • MD5

      8b36f5824b126a47aea662d562e5b542

    • SHA1

      891481524b9bc1485506fcefb84f2d20ad9010ec

    • SHA256

      91fc2b7aa9342f74e956b64db6b717ab2a30bb0485c2c9d1f2562faceb037f4c

    • SHA512

      81b0de80244307ffea68293b8e57336794b6d078361cb1ed8aa4dae49509bfbcf4b185647a80b543a1bb4348817c091bf62c2282f1b387d9d40488bf645f1c4e

    • SSDEEP

      6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks