General

  • Target

    6e21ce0d401e4a5140ccc1627094131b

  • Size

    363KB

  • Sample

    241108-acmcmazna1

  • MD5

    6e21ce0d401e4a5140ccc1627094131b

  • SHA1

    53db7209ba2e069eda1fdf5449887021e7e82517

  • SHA256

    bed6caaaf58f84e896b3cc4c819c784f0f014baba903e6f008761094b4ebe093

  • SHA512

    c02445c5d8df2242a39aacb0f488edf5f97021928c8b697e0c43c762a39b66597da410a93757c332f8864008edd2417dc045d0ad38797abebb23b7f051157115

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Targets

    • Target

      6e21ce0d401e4a5140ccc1627094131b

    • Size

      363KB

    • MD5

      6e21ce0d401e4a5140ccc1627094131b

    • SHA1

      53db7209ba2e069eda1fdf5449887021e7e82517

    • SHA256

      bed6caaaf58f84e896b3cc4c819c784f0f014baba903e6f008761094b4ebe093

    • SHA512

      c02445c5d8df2242a39aacb0f488edf5f97021928c8b697e0c43c762a39b66597da410a93757c332f8864008edd2417dc045d0ad38797abebb23b7f051157115

    • SSDEEP

      6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks