General

  • Target

    c0fe8909c90e158b57a69894a0150026

  • Size

    373KB

  • Sample

    241109-28g7bstlax

  • MD5

    c0fe8909c90e158b57a69894a0150026

  • SHA1

    131d9525d7ccab1eb48004ddbb350bbe0a21a4cd

  • SHA256

    afe28de8cdf70da0364653dc38d0eb30711d22825d62ad685c4bb062afea190a

  • SHA512

    8124ee345913beb7bffad2e04cd0f305a9c65cf8a9efde3a348f93e5e515f153922a9f72947cb462e6dcfa5630aeaaea19084ddfd1a24b52b2a2f984c54f5590

  • SSDEEP

    6144:6EgPS+2K5Y0dvG4djhrnpV3yw+dNHpLQOIf+STXg:6EgPS+2ivz3Lix1P6

Malware Config

Extracted

Family

redline

Botnet

ww

C2

193.106.191.67:44400

Attributes
  • auth_value

    5a1b28ccd05953f5c3f99729c12427cc

Targets

    • Target

      c0fe8909c90e158b57a69894a0150026

    • Size

      373KB

    • MD5

      c0fe8909c90e158b57a69894a0150026

    • SHA1

      131d9525d7ccab1eb48004ddbb350bbe0a21a4cd

    • SHA256

      afe28de8cdf70da0364653dc38d0eb30711d22825d62ad685c4bb062afea190a

    • SHA512

      8124ee345913beb7bffad2e04cd0f305a9c65cf8a9efde3a348f93e5e515f153922a9f72947cb462e6dcfa5630aeaaea19084ddfd1a24b52b2a2f984c54f5590

    • SSDEEP

      6144:6EgPS+2K5Y0dvG4djhrnpV3yw+dNHpLQOIf+STXg:6EgPS+2ivz3Lix1P6

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks