General

  • Target

    16a8357d649a830016a07bff7224f7e5420aa3029bb7b3e06f84a48371c978a7

  • Size

    330KB

  • Sample

    241109-1mvd4ashqg

  • MD5

    db7a14fcb7bfde35fc00717c4fc0aadc

  • SHA1

    5b69a5d8216691edfd2eaae0f2108b62a253cd69

  • SHA256

    16a8357d649a830016a07bff7224f7e5420aa3029bb7b3e06f84a48371c978a7

  • SHA512

    2dbf557caf06032c1f131b9c9e7b9d3b2e118e9f604cb9cef60a72da5983e2f98eca66a2ed94d0979cc429539d20e6222e2896f9b641895b20c5103866967daf

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      16a8357d649a830016a07bff7224f7e5420aa3029bb7b3e06f84a48371c978a7

    • Size

      330KB

    • MD5

      db7a14fcb7bfde35fc00717c4fc0aadc

    • SHA1

      5b69a5d8216691edfd2eaae0f2108b62a253cd69

    • SHA256

      16a8357d649a830016a07bff7224f7e5420aa3029bb7b3e06f84a48371c978a7

    • SHA512

      2dbf557caf06032c1f131b9c9e7b9d3b2e118e9f604cb9cef60a72da5983e2f98eca66a2ed94d0979cc429539d20e6222e2896f9b641895b20c5103866967daf

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks