General

  • Target

    671740e92fb0f3932fb1c0318c700b8d245de15ae97798416cd56bcb5c20c216

  • Size

    354KB

  • Sample

    241109-2yhp4stjey

  • MD5

    6dbaab6df58b42f1419eb271fc931d14

  • SHA1

    5715b1ba09e5f2963a46df094a51070ac6c486fe

  • SHA256

    671740e92fb0f3932fb1c0318c700b8d245de15ae97798416cd56bcb5c20c216

  • SHA512

    9d640e1b08cd20cf61147a3c8ddce322e1571c339b694376bf4ce38d948fdc757421d95ff409d3da37b2490b3b8f8231a2e61e1074a65ed34c7ddca2f82c496d

  • SSDEEP

    6144:S4TfwB58ylKPvaBCMy+KgUfEXY70oqvpim/mexAi/D0:S4Tfwv8yIXchKjBQoqBim+Szr0

Malware Config

Extracted

Family

redline

Botnet

rosn

C2

176.113.115.145:4125

Attributes
  • auth_value

    050a19e1db4d0024b0f23b37dcf961f4

Targets

    • Target

      671740e92fb0f3932fb1c0318c700b8d245de15ae97798416cd56bcb5c20c216

    • Size

      354KB

    • MD5

      6dbaab6df58b42f1419eb271fc931d14

    • SHA1

      5715b1ba09e5f2963a46df094a51070ac6c486fe

    • SHA256

      671740e92fb0f3932fb1c0318c700b8d245de15ae97798416cd56bcb5c20c216

    • SHA512

      9d640e1b08cd20cf61147a3c8ddce322e1571c339b694376bf4ce38d948fdc757421d95ff409d3da37b2490b3b8f8231a2e61e1074a65ed34c7ddca2f82c496d

    • SSDEEP

      6144:S4TfwB58ylKPvaBCMy+KgUfEXY70oqvpim/mexAi/D0:S4Tfwv8yIXchKjBQoqBim+Szr0

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks