General

  • Target

    0633926db0943db6163ed324862433da1cf9af47

  • Size

    309KB

  • Sample

    241109-1mj85awjgn

  • MD5

    dc5bd5bbd19578279855564558a1d55a

  • SHA1

    0633926db0943db6163ed324862433da1cf9af47

  • SHA256

    fb347e9cf95526873201021f112884b19e0cbe5d2ff5f377dcfa95e2c7450248

  • SHA512

    6607059d6c2fafeaa6d56c8d5a9397325b9093f65b60ae18a01ec39a67dd5b3e8a94b9ff09ce7496f75076c40e7c4391077ba66ac9f231980f9541969c46efdb

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      0633926db0943db6163ed324862433da1cf9af47

    • Size

      309KB

    • MD5

      dc5bd5bbd19578279855564558a1d55a

    • SHA1

      0633926db0943db6163ed324862433da1cf9af47

    • SHA256

      fb347e9cf95526873201021f112884b19e0cbe5d2ff5f377dcfa95e2c7450248

    • SHA512

      6607059d6c2fafeaa6d56c8d5a9397325b9093f65b60ae18a01ec39a67dd5b3e8a94b9ff09ce7496f75076c40e7c4391077ba66ac9f231980f9541969c46efdb

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks