General

  • Target

    f92b5ef086814fb50467228f34b4d48ceb2bd010

  • Size

    360KB

  • Sample

    241108-zm7hzsskdm

  • MD5

    cc54c25b805f03c5439754b49705e3b2

  • SHA1

    f92b5ef086814fb50467228f34b4d48ceb2bd010

  • SHA256

    104ed44034a33b674122ddd40b3789da8e67df032357d259e5b73509474583c8

  • SHA512

    8d9f509fc7836270efa9210cabe85915ee1774615b368f8b3c118889ca9a6a938dfaa57825baeff008a62d84a2ef939b0241293056da13a939a132197d8a34a3

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Targets

    • Target

      f92b5ef086814fb50467228f34b4d48ceb2bd010

    • Size

      360KB

    • MD5

      cc54c25b805f03c5439754b49705e3b2

    • SHA1

      f92b5ef086814fb50467228f34b4d48ceb2bd010

    • SHA256

      104ed44034a33b674122ddd40b3789da8e67df032357d259e5b73509474583c8

    • SHA512

      8d9f509fc7836270efa9210cabe85915ee1774615b368f8b3c118889ca9a6a938dfaa57825baeff008a62d84a2ef939b0241293056da13a939a132197d8a34a3

    • SSDEEP

      6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks