General

  • Target

    3d51fa9860182843267eac914c1175fc

  • Size

    363KB

  • Sample

    241108-lq1yqazhnm

  • MD5

    3d51fa9860182843267eac914c1175fc

  • SHA1

    b9eab8cd1dde500a0611b82c4909665390a75d0f

  • SHA256

    5cd4f00566811ecd8e04ff2fc5e43816e6a16b4634dc9abade5fdaf0d046870b

  • SHA512

    4d15896c3429f1aa8a6f5b50ba765f116059e61a167b937d4c27e376fc892b75c53a2a6ef46ac5b50b3a6ac0eeb13878589f436368c6ab6e41206ae961293bc4

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Targets

    • Target

      3d51fa9860182843267eac914c1175fc

    • Size

      363KB

    • MD5

      3d51fa9860182843267eac914c1175fc

    • SHA1

      b9eab8cd1dde500a0611b82c4909665390a75d0f

    • SHA256

      5cd4f00566811ecd8e04ff2fc5e43816e6a16b4634dc9abade5fdaf0d046870b

    • SHA512

      4d15896c3429f1aa8a6f5b50ba765f116059e61a167b937d4c27e376fc892b75c53a2a6ef46ac5b50b3a6ac0eeb13878589f436368c6ab6e41206ae961293bc4

    • SSDEEP

      6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks