General

  • Target

    866bce9b1dc6217f3738e92c09523f2977c325d050aac2601ea95d48ddfa9e45

  • Size

    363KB

  • Sample

    241108-1tx4ka1ama

  • MD5

    d2c10e7e4f2031043b4862a80e0c24ea

  • SHA1

    3470629c935dff600f5ce0123eac1fb0aa702c7e

  • SHA256

    866bce9b1dc6217f3738e92c09523f2977c325d050aac2601ea95d48ddfa9e45

  • SHA512

    9fa6cf3d19481fa80285db8d0c14bf2fd8e6cd8c048037842a26e498a45125aa63b3fcbaff120aaaba322ae080b4a7fc48d9c79dd00b0231642d2649f79d0077

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Targets

    • Target

      866bce9b1dc6217f3738e92c09523f2977c325d050aac2601ea95d48ddfa9e45

    • Size

      363KB

    • MD5

      d2c10e7e4f2031043b4862a80e0c24ea

    • SHA1

      3470629c935dff600f5ce0123eac1fb0aa702c7e

    • SHA256

      866bce9b1dc6217f3738e92c09523f2977c325d050aac2601ea95d48ddfa9e45

    • SHA512

      9fa6cf3d19481fa80285db8d0c14bf2fd8e6cd8c048037842a26e498a45125aa63b3fcbaff120aaaba322ae080b4a7fc48d9c79dd00b0231642d2649f79d0077

    • SSDEEP

      6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks