General

  • Target

    c36f0f2bb85615d6ba239e2e9a9817f0e12f11efa1c2ce442b7d275226cb5695

  • Size

    314KB

  • Sample

    241109-2ncq4swqej

  • MD5

    af4cf7a7921c9687f1ca247e3d543add

  • SHA1

    7f3099bc600667f5c6024b70acfa93de91d9cd9b

  • SHA256

    c36f0f2bb85615d6ba239e2e9a9817f0e12f11efa1c2ce442b7d275226cb5695

  • SHA512

    3f622bb85dbcfc30962da38be9a8012403f1b918d210ff571d7bbc235494f57203ff563d0ee4d874b1eac8e3d320ea264142cfe2eddb661e5a5e3fc4680a6779

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      c36f0f2bb85615d6ba239e2e9a9817f0e12f11efa1c2ce442b7d275226cb5695

    • Size

      314KB

    • MD5

      af4cf7a7921c9687f1ca247e3d543add

    • SHA1

      7f3099bc600667f5c6024b70acfa93de91d9cd9b

    • SHA256

      c36f0f2bb85615d6ba239e2e9a9817f0e12f11efa1c2ce442b7d275226cb5695

    • SHA512

      3f622bb85dbcfc30962da38be9a8012403f1b918d210ff571d7bbc235494f57203ff563d0ee4d874b1eac8e3d320ea264142cfe2eddb661e5a5e3fc4680a6779

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks