General

  • Target

    4c59d6861e60ace7d97ca8453abbc1832a8ba2aca800239b3ecd1129e13137e0

  • Size

    380KB

  • Sample

    241109-1c6z5ssgmj

  • MD5

    f6874ad49e2814d575a31e4fc4cb8b91

  • SHA1

    1a3d8c751c27598abf0d5e4ee17d4692f736ce8e

  • SHA256

    4c59d6861e60ace7d97ca8453abbc1832a8ba2aca800239b3ecd1129e13137e0

  • SHA512

    4dbe66364c282fb9551e52e3ddc2124427b97c89e4ef02da56769700adc86ac4175b976df875b42c7dc2ecd5f6b696f2493f4a629e4d87dc9510ca844948b6e8

  • SSDEEP

    6144:BBh6qE9PjM6GwJu+NUxWY1oHVaQmKXgHlH:B36q4mwJuDWR/

Malware Config

Extracted

Family

redline

Botnet

ww

C2

193.106.191.67:44400

Attributes
  • auth_value

    5a1b28ccd05953f5c3f99729c12427cc

Targets

    • Target

      4c59d6861e60ace7d97ca8453abbc1832a8ba2aca800239b3ecd1129e13137e0

    • Size

      380KB

    • MD5

      f6874ad49e2814d575a31e4fc4cb8b91

    • SHA1

      1a3d8c751c27598abf0d5e4ee17d4692f736ce8e

    • SHA256

      4c59d6861e60ace7d97ca8453abbc1832a8ba2aca800239b3ecd1129e13137e0

    • SHA512

      4dbe66364c282fb9551e52e3ddc2124427b97c89e4ef02da56769700adc86ac4175b976df875b42c7dc2ecd5f6b696f2493f4a629e4d87dc9510ca844948b6e8

    • SSDEEP

      6144:BBh6qE9PjM6GwJu+NUxWY1oHVaQmKXgHlH:B36q4mwJuDWR/

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks