General

  • Target

    77e2606039bba37ea052f66d9fc2c710

  • Size

    364KB

  • Sample

    241108-a8cs3a1jez

  • MD5

    77e2606039bba37ea052f66d9fc2c710

  • SHA1

    9e2a67166b6a251ed457fecc2c81dbbfaa95136f

  • SHA256

    7c49e6492c624068f4f62788c3c6f2321db318d6f2ceec2b1d5f197292bd22e5

  • SHA512

    354add860e2eb56475147db78885fed6b6305a8bad1be3933a90d447febaeb30c14630444e9a5272e85ed2535808e361cf301967c9e8c979e6cfb79715720d75

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Targets

    • Target

      77e2606039bba37ea052f66d9fc2c710

    • Size

      364KB

    • MD5

      77e2606039bba37ea052f66d9fc2c710

    • SHA1

      9e2a67166b6a251ed457fecc2c81dbbfaa95136f

    • SHA256

      7c49e6492c624068f4f62788c3c6f2321db318d6f2ceec2b1d5f197292bd22e5

    • SHA512

      354add860e2eb56475147db78885fed6b6305a8bad1be3933a90d447febaeb30c14630444e9a5272e85ed2535808e361cf301967c9e8c979e6cfb79715720d75

    • SSDEEP

      6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks