General

  • Target

    3c57aea7cab8c2fd542a1a4634b07f32

  • Size

    313KB

  • Sample

    241109-2yhecatgqj

  • MD5

    3c57aea7cab8c2fd542a1a4634b07f32

  • SHA1

    0cc312e004f735c58953d26ca975406e4925c598

  • SHA256

    64ce60beff6984bb20c7afc9f3e5d4bc698b72e30811a09d6fe66bfb8524730a

  • SHA512

    a16a5b6d646417daa194888811415797af301b7ed4c86b81171a42065cd36c1ddfa118504cb2c978e6bdbce21fc536aa15cecd863052aea6f1c719c6a6755221

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      3c57aea7cab8c2fd542a1a4634b07f32

    • Size

      313KB

    • MD5

      3c57aea7cab8c2fd542a1a4634b07f32

    • SHA1

      0cc312e004f735c58953d26ca975406e4925c598

    • SHA256

      64ce60beff6984bb20c7afc9f3e5d4bc698b72e30811a09d6fe66bfb8524730a

    • SHA512

      a16a5b6d646417daa194888811415797af301b7ed4c86b81171a42065cd36c1ddfa118504cb2c978e6bdbce21fc536aa15cecd863052aea6f1c719c6a6755221

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks