General

  • Target

    cc9792df73a02cff0c3fc7baa1aaaa48c841bd49311d292c7fec4bff582cc9ce

  • Size

    353KB

  • Sample

    241109-1naq3stakn

  • MD5

    2a43711c36be431b8d631e0d6382d6c2

  • SHA1

    52a1a1d80c72788cd24f67b24fa05d767c778654

  • SHA256

    cc9792df73a02cff0c3fc7baa1aaaa48c841bd49311d292c7fec4bff582cc9ce

  • SHA512

    d5729f8e0bba03e34cd9e8e2d0f4f4e0fb66f2df4ad865dfdb689ba3e5fe53975ba544d2913058462f50daf4f4258dbb75fe3d3ed6f2da16a9832590d525698e

  • SSDEEP

    6144:rREqy90QngUjao/r8Kzunyg8p9PgbHujtxTxKVjUc8Wj:1EqnQngUj9nzuyg8p9PgbHKxTxir

Malware Config

Extracted

Family

redline

Botnet

iNerinoEU

C2

193.233.48.58:38989

Attributes
  • auth_value

    4536d7478dc495213e425f08d6e8e496

Targets

    • Target

      cc9792df73a02cff0c3fc7baa1aaaa48c841bd49311d292c7fec4bff582cc9ce

    • Size

      353KB

    • MD5

      2a43711c36be431b8d631e0d6382d6c2

    • SHA1

      52a1a1d80c72788cd24f67b24fa05d767c778654

    • SHA256

      cc9792df73a02cff0c3fc7baa1aaaa48c841bd49311d292c7fec4bff582cc9ce

    • SHA512

      d5729f8e0bba03e34cd9e8e2d0f4f4e0fb66f2df4ad865dfdb689ba3e5fe53975ba544d2913058462f50daf4f4258dbb75fe3d3ed6f2da16a9832590d525698e

    • SSDEEP

      6144:rREqy90QngUjao/r8Kzunyg8p9PgbHujtxTxKVjUc8Wj:1EqnQngUj9nzuyg8p9PgbHKxTxir

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks