General

  • Target

    baae1322b40a135cb26a899a8b960b61

  • Size

    373KB

  • Sample

    241109-1dwkss1rgv

  • MD5

    baae1322b40a135cb26a899a8b960b61

  • SHA1

    d1da28d29200c81c133fff811e71c01a4cc06a29

  • SHA256

    fa58244bd96bfd792de00f3bcd02ca8886edeba5a8f36c2757acb927d0ee9bd5

  • SHA512

    7661d429dbf6fb3649fd230eca74cda5686870e71a539f44b0adba32051f16369f3c90b0e755fe79d6725edd5f9484bc1697a9ea521e86c2ee43a3d86ab60d41

  • SSDEEP

    6144:AEgNLa+9+gF25fIGMqHGsw+zx+TWWLYxkHKyEjr:AEgNm+g35rnDzx+TWaYxkqn

Malware Config

Extracted

Family

redline

Botnet

ww

C2

193.106.191.67:44400

Attributes
  • auth_value

    5a1b28ccd05953f5c3f99729c12427cc

Targets

    • Target

      baae1322b40a135cb26a899a8b960b61

    • Size

      373KB

    • MD5

      baae1322b40a135cb26a899a8b960b61

    • SHA1

      d1da28d29200c81c133fff811e71c01a4cc06a29

    • SHA256

      fa58244bd96bfd792de00f3bcd02ca8886edeba5a8f36c2757acb927d0ee9bd5

    • SHA512

      7661d429dbf6fb3649fd230eca74cda5686870e71a539f44b0adba32051f16369f3c90b0e755fe79d6725edd5f9484bc1697a9ea521e86c2ee43a3d86ab60d41

    • SSDEEP

      6144:AEgNLa+9+gF25fIGMqHGsw+zx+TWWLYxkHKyEjr:AEgNm+g35rnDzx+TWaYxkqn

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks