General

  • Target

    90517e6d33d5d2b394dafd5436f1d105

  • Size

    315KB

  • Sample

    241109-2p62casrdw

  • MD5

    90517e6d33d5d2b394dafd5436f1d105

  • SHA1

    a6a29afab37d08fcdf46d7ee040c60d478db0593

  • SHA256

    a338b677a722390956f61afd4bed829ddd46f9f82a35b7f4d5580f551ebaf54b

  • SHA512

    cdd894144290323b2f85cab7b506d879e4ca8f8f180ddc80d4dded01fbec9b3d3159544e9ae1fcdf083235269163b2d506651c2d162794b36538665a3411d69b

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      90517e6d33d5d2b394dafd5436f1d105

    • Size

      315KB

    • MD5

      90517e6d33d5d2b394dafd5436f1d105

    • SHA1

      a6a29afab37d08fcdf46d7ee040c60d478db0593

    • SHA256

      a338b677a722390956f61afd4bed829ddd46f9f82a35b7f4d5580f551ebaf54b

    • SHA512

      cdd894144290323b2f85cab7b506d879e4ca8f8f180ddc80d4dded01fbec9b3d3159544e9ae1fcdf083235269163b2d506651c2d162794b36538665a3411d69b

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks