General

  • Target

    679654739a9686efe78c464def559e07

  • Size

    363KB

  • Sample

    241107-t4p3dawckh

  • MD5

    679654739a9686efe78c464def559e07

  • SHA1

    003f1f087b7abad8cf64fbf2044dbadd355b2106

  • SHA256

    d0afa6d070a806983db8bfed7dc4cf9cfe072027926266fb779488ba27d0a301

  • SHA512

    c9097048ed6476b41da95f29d6904b71a619b6006cb81338043956f7a4c80edb87554753c258690331f3d56467ecbf2e908155e0e72b5967251e941740275764

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Targets

    • Target

      679654739a9686efe78c464def559e07

    • Size

      363KB

    • MD5

      679654739a9686efe78c464def559e07

    • SHA1

      003f1f087b7abad8cf64fbf2044dbadd355b2106

    • SHA256

      d0afa6d070a806983db8bfed7dc4cf9cfe072027926266fb779488ba27d0a301

    • SHA512

      c9097048ed6476b41da95f29d6904b71a619b6006cb81338043956f7a4c80edb87554753c258690331f3d56467ecbf2e908155e0e72b5967251e941740275764

    • SSDEEP

      6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks