General

  • Target

    5a0d6d4590c97bc94b6f04b00acd8700

  • Size

    316KB

  • Sample

    241109-2pa9nssrcs

  • MD5

    5a0d6d4590c97bc94b6f04b00acd8700

  • SHA1

    0d93564bbefb7abc4e34ffeafed0bb49b395b706

  • SHA256

    9c811361e4a424c473a7e00d76f4cbe54b1264c52226818b64ce4959c1762028

  • SHA512

    fdd326a2bde05e6e60228960150ca9bcb7768c5e7699b4d057ace5f36c8b0098869735aacc5400aab9cc1042c73fc2fe42b06721073d7239ee558b49ce2b9f3a

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      5a0d6d4590c97bc94b6f04b00acd8700

    • Size

      316KB

    • MD5

      5a0d6d4590c97bc94b6f04b00acd8700

    • SHA1

      0d93564bbefb7abc4e34ffeafed0bb49b395b706

    • SHA256

      9c811361e4a424c473a7e00d76f4cbe54b1264c52226818b64ce4959c1762028

    • SHA512

      fdd326a2bde05e6e60228960150ca9bcb7768c5e7699b4d057ace5f36c8b0098869735aacc5400aab9cc1042c73fc2fe42b06721073d7239ee558b49ce2b9f3a

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks