General

  • Target

    f03f7b8557b82448c4be1f4df446139aabd79c8502b4012b8be3dc599cd138bb

  • Size

    315KB

  • Sample

    241109-2l3jratfmf

  • MD5

    434a4efbd58b60b6017a151aa1855079

  • SHA1

    f54f8ae9f7feb6a200f08db1caa212c627d6e382

  • SHA256

    f03f7b8557b82448c4be1f4df446139aabd79c8502b4012b8be3dc599cd138bb

  • SHA512

    d1b5241fffe12e86cd96591bfa229323de8b8061e0d609f790e2259f4e6eb06a80fea4720a487a600853220deaaa869ab8347b605c16cca9b830ab9f95df09a4

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      f03f7b8557b82448c4be1f4df446139aabd79c8502b4012b8be3dc599cd138bb

    • Size

      315KB

    • MD5

      434a4efbd58b60b6017a151aa1855079

    • SHA1

      f54f8ae9f7feb6a200f08db1caa212c627d6e382

    • SHA256

      f03f7b8557b82448c4be1f4df446139aabd79c8502b4012b8be3dc599cd138bb

    • SHA512

      d1b5241fffe12e86cd96591bfa229323de8b8061e0d609f790e2259f4e6eb06a80fea4720a487a600853220deaaa869ab8347b605c16cca9b830ab9f95df09a4

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks