General

  • Target

    d1d47d6054ecda2f4bd702f5a547bd67

  • Size

    364KB

  • Sample

    241108-xnfqjsxepc

  • MD5

    d1d47d6054ecda2f4bd702f5a547bd67

  • SHA1

    9adf970959b299bfb483f00451907c9a1a1747e3

  • SHA256

    8731c15a32527f55dd4a432f358cd40f870d2d3fd51de7fe66963aa0d0755fdc

  • SHA512

    8d10eb81d3eb2b00fd221e1edb24585b2b3fb0e244627f0631af7c36880deacd83d56bdc438d6a47f1e60c94a2fce1d0fcb8f85677a5ba12141067681045d8d0

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Targets

    • Target

      d1d47d6054ecda2f4bd702f5a547bd67

    • Size

      364KB

    • MD5

      d1d47d6054ecda2f4bd702f5a547bd67

    • SHA1

      9adf970959b299bfb483f00451907c9a1a1747e3

    • SHA256

      8731c15a32527f55dd4a432f358cd40f870d2d3fd51de7fe66963aa0d0755fdc

    • SHA512

      8d10eb81d3eb2b00fd221e1edb24585b2b3fb0e244627f0631af7c36880deacd83d56bdc438d6a47f1e60c94a2fce1d0fcb8f85677a5ba12141067681045d8d0

    • SSDEEP

      6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks