General

  • Target

    fd55954fb1ecbcb484986747ea08a14710da09a6ef945bbf483dc31bdfdd84b0

  • Size

    373KB

  • Sample

    241109-1jjs7ashlr

  • MD5

    9fecdc94c99f5198acddd006ca6cbd63

  • SHA1

    a9a640bba57c9f7ad3756b2a501736f7e0e8a2b9

  • SHA256

    fd55954fb1ecbcb484986747ea08a14710da09a6ef945bbf483dc31bdfdd84b0

  • SHA512

    a74815039d6348f6595c4ac266e2d614e25c0d33482accd729a23e49160cccb6b0abbfdde5d0ab9466e6af5a0fe942960da7b167f60eff5ecbe7b9fe6d9587ce

  • SSDEEP

    6144:qcIM0BdD6qBL4M7NoG10jAjM4TIFVv7iJpC:qcMD624mf1iqM40FFu

Malware Config

Extracted

Family

redline

Botnet

ww

C2

193.106.191.67:44400

Attributes
  • auth_value

    5a1b28ccd05953f5c3f99729c12427cc

Targets

    • Target

      fd55954fb1ecbcb484986747ea08a14710da09a6ef945bbf483dc31bdfdd84b0

    • Size

      373KB

    • MD5

      9fecdc94c99f5198acddd006ca6cbd63

    • SHA1

      a9a640bba57c9f7ad3756b2a501736f7e0e8a2b9

    • SHA256

      fd55954fb1ecbcb484986747ea08a14710da09a6ef945bbf483dc31bdfdd84b0

    • SHA512

      a74815039d6348f6595c4ac266e2d614e25c0d33482accd729a23e49160cccb6b0abbfdde5d0ab9466e6af5a0fe942960da7b167f60eff5ecbe7b9fe6d9587ce

    • SSDEEP

      6144:qcIM0BdD6qBL4M7NoG10jAjM4TIFVv7iJpC:qcMD624mf1iqM40FFu

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks