General

  • Target

    7586f73c6533b1bd79044d9a9a541a4c2a9e96ac

  • Size

    363KB

  • Sample

    241107-m4g87szqbs

  • MD5

    8597fa4562ea0aa866b6e3cfa31a1dce

  • SHA1

    7586f73c6533b1bd79044d9a9a541a4c2a9e96ac

  • SHA256

    ffef449f2843700921aefd3e1c3be91f9f17f1c0e81794336e3fc5d45067e34e

  • SHA512

    fe2c7d5f43fc5a69bde91a305481e52a45ab0b4f86ca5cb31677994e877da5c77a95b429953a88ffd32f91e725d88c2e42c8cffe60ea844712e508a9a1d7b5dd

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Targets

    • Target

      7586f73c6533b1bd79044d9a9a541a4c2a9e96ac

    • Size

      363KB

    • MD5

      8597fa4562ea0aa866b6e3cfa31a1dce

    • SHA1

      7586f73c6533b1bd79044d9a9a541a4c2a9e96ac

    • SHA256

      ffef449f2843700921aefd3e1c3be91f9f17f1c0e81794336e3fc5d45067e34e

    • SHA512

      fe2c7d5f43fc5a69bde91a305481e52a45ab0b4f86ca5cb31677994e877da5c77a95b429953a88ffd32f91e725d88c2e42c8cffe60ea844712e508a9a1d7b5dd

    • SSDEEP

      6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks