General

  • Target

    7726ff0b9635f7097a6f199fc4f893de0d17b65c0444747f76d488025c80b16b

  • Size

    363KB

  • Sample

    241108-fvv1davqgv

  • MD5

    5426a0ef4d14d9dd6f745aa96ee6b702

  • SHA1

    352f96b9d57656d789c286842c37e342102d26c7

  • SHA256

    7726ff0b9635f7097a6f199fc4f893de0d17b65c0444747f76d488025c80b16b

  • SHA512

    b478e954f31567979f6cee3419805c04032c036ae5e1e1f3173278d91371a57484936da43f36b318bbeed98828c6896d259f86034e5597af58b1654fb6404fc7

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Targets

    • Target

      7726ff0b9635f7097a6f199fc4f893de0d17b65c0444747f76d488025c80b16b

    • Size

      363KB

    • MD5

      5426a0ef4d14d9dd6f745aa96ee6b702

    • SHA1

      352f96b9d57656d789c286842c37e342102d26c7

    • SHA256

      7726ff0b9635f7097a6f199fc4f893de0d17b65c0444747f76d488025c80b16b

    • SHA512

      b478e954f31567979f6cee3419805c04032c036ae5e1e1f3173278d91371a57484936da43f36b318bbeed98828c6896d259f86034e5597af58b1654fb6404fc7

    • SSDEEP

      6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks