General

  • Target

    76bbadb3752ffefc76d6bf973ceb401a94a50838926d493b805f65c87eaf1b25

  • Size

    360KB

  • Sample

    241108-e76rzayjcl

  • MD5

    d832e5da3e6fe2401a0a29b19b2d503a

  • SHA1

    e34a37a4beb7b3c15fe9ffc5c4ccaa9c003cc36a

  • SHA256

    76bbadb3752ffefc76d6bf973ceb401a94a50838926d493b805f65c87eaf1b25

  • SHA512

    715d850195b5ee919293a9da44d2544b8f21838c6779a656efe824f50ab944fabf9be3f7e89729ff455abd33bb2a51f199e998fd8fbcaaa2916b0f4726bcbc7f

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Targets

    • Target

      76bbadb3752ffefc76d6bf973ceb401a94a50838926d493b805f65c87eaf1b25

    • Size

      360KB

    • MD5

      d832e5da3e6fe2401a0a29b19b2d503a

    • SHA1

      e34a37a4beb7b3c15fe9ffc5c4ccaa9c003cc36a

    • SHA256

      76bbadb3752ffefc76d6bf973ceb401a94a50838926d493b805f65c87eaf1b25

    • SHA512

      715d850195b5ee919293a9da44d2544b8f21838c6779a656efe824f50ab944fabf9be3f7e89729ff455abd33bb2a51f199e998fd8fbcaaa2916b0f4726bcbc7f

    • SSDEEP

      6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks