General

  • Target

    666c0cbe3f026dacf25bcad398bd418d456ccf0e

  • Size

    353KB

  • Sample

    241109-18k3jstdmh

  • MD5

    9447d585f5e7ba371a08e7f6a683b110

  • SHA1

    666c0cbe3f026dacf25bcad398bd418d456ccf0e

  • SHA256

    3d9b7c2c75ba7325ba13ec7029e9034241c97bce4362112868a702776d8ac8be

  • SHA512

    8811eca360c33df74d40195e05ef3940197c80ed422b39661a68957693c7d077a0d599f4cd9ebf5d74ebac6113f1609f3aa802a933f2a8abaa02337308b379a1

  • SSDEEP

    6144:8VU7zRF/jHihU3fa8ZcdgpizbEZhgVgevU1gRmiM3Si1:GU7f/jHih/Ucdgdgmev6ymi1

Malware Config

Extracted

Family

redline

Botnet

RuzkiUNIKALNO

C2

193.233.48.58:38989

Attributes
  • auth_value

    c504b04cfbdd4bf85ce6195bcb37fba6

Targets

    • Target

      666c0cbe3f026dacf25bcad398bd418d456ccf0e

    • Size

      353KB

    • MD5

      9447d585f5e7ba371a08e7f6a683b110

    • SHA1

      666c0cbe3f026dacf25bcad398bd418d456ccf0e

    • SHA256

      3d9b7c2c75ba7325ba13ec7029e9034241c97bce4362112868a702776d8ac8be

    • SHA512

      8811eca360c33df74d40195e05ef3940197c80ed422b39661a68957693c7d077a0d599f4cd9ebf5d74ebac6113f1609f3aa802a933f2a8abaa02337308b379a1

    • SSDEEP

      6144:8VU7zRF/jHihU3fa8ZcdgpizbEZhgVgevU1gRmiM3Si1:GU7f/jHih/Ucdgdgmev6ymi1

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks