General

  • Target

    2da0f1b6937dde9f2a26d3702506ea12

  • Size

    316KB

  • Sample

    241109-1ja62sshjg

  • MD5

    2da0f1b6937dde9f2a26d3702506ea12

  • SHA1

    187a394d3bafe8a7313763145cb11d4ce983025a

  • SHA256

    3bddb6edd475045abebb95cb866be66e8a376ee0c0ed0a59126f27b8145c8a3f

  • SHA512

    d170e34f5e534438f69d25387ab297c991515bbcb2f520292e20be7746c7c48cf196fca8cc3bc1630edb6b95f2b11e27b3fd04e74105406cdb74d0e11c15562a

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      2da0f1b6937dde9f2a26d3702506ea12

    • Size

      316KB

    • MD5

      2da0f1b6937dde9f2a26d3702506ea12

    • SHA1

      187a394d3bafe8a7313763145cb11d4ce983025a

    • SHA256

      3bddb6edd475045abebb95cb866be66e8a376ee0c0ed0a59126f27b8145c8a3f

    • SHA512

      d170e34f5e534438f69d25387ab297c991515bbcb2f520292e20be7746c7c48cf196fca8cc3bc1630edb6b95f2b11e27b3fd04e74105406cdb74d0e11c15562a

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks