General

  • Target

    e7f88f6d6ad3be69b0a29448197c32be7a80aafb67ea3669d47c92421cf9b0c9

  • Size

    363KB

  • Sample

    241108-xhdn1axfmj

  • MD5

    05d62931b3b5e87237e1f789be74e27e

  • SHA1

    86f357e6a9b3f145e61e829be15e3f82a5fe333b

  • SHA256

    e7f88f6d6ad3be69b0a29448197c32be7a80aafb67ea3669d47c92421cf9b0c9

  • SHA512

    c585df23ebf02402f5123b5eea9d25980e959e52f0a737bde6cd0b07eb36b110e39762f8b36222d39cd8302b0b8261ca20994d7cde7dad2848ec0ad0895ff20b

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Targets

    • Target

      e7f88f6d6ad3be69b0a29448197c32be7a80aafb67ea3669d47c92421cf9b0c9

    • Size

      363KB

    • MD5

      05d62931b3b5e87237e1f789be74e27e

    • SHA1

      86f357e6a9b3f145e61e829be15e3f82a5fe333b

    • SHA256

      e7f88f6d6ad3be69b0a29448197c32be7a80aafb67ea3669d47c92421cf9b0c9

    • SHA512

      c585df23ebf02402f5123b5eea9d25980e959e52f0a737bde6cd0b07eb36b110e39762f8b36222d39cd8302b0b8261ca20994d7cde7dad2848ec0ad0895ff20b

    • SSDEEP

      6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks