General

  • Target

    7dd0514bae4d2cb3c4ddec605fbb11adf55d2a0c

  • Size

    364KB

  • Sample

    241108-1qf1wazhnh

  • MD5

    ded82f343a0d4b0c35a21f1ab65989ad

  • SHA1

    7dd0514bae4d2cb3c4ddec605fbb11adf55d2a0c

  • SHA256

    b1881d1328b84cb96e2fb030f4aafc31507ad59ce757edcf047946e4d8889ec5

  • SHA512

    ebed23258e0582cf8dd85ff40a9d26812a9a5ce4555e5afb76aabbea0f3873408655d2115cf4241d2e14bc000863488b38f31a1096edfc46b4214b183d708132

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Targets

    • Target

      7dd0514bae4d2cb3c4ddec605fbb11adf55d2a0c

    • Size

      364KB

    • MD5

      ded82f343a0d4b0c35a21f1ab65989ad

    • SHA1

      7dd0514bae4d2cb3c4ddec605fbb11adf55d2a0c

    • SHA256

      b1881d1328b84cb96e2fb030f4aafc31507ad59ce757edcf047946e4d8889ec5

    • SHA512

      ebed23258e0582cf8dd85ff40a9d26812a9a5ce4555e5afb76aabbea0f3873408655d2115cf4241d2e14bc000863488b38f31a1096edfc46b4214b183d708132

    • SSDEEP

      6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks