General

  • Target

    a59c61af2816b872d1cfc423689560dc

  • Size

    311KB

  • Sample

    241109-2zgjfawrhn

  • MD5

    a59c61af2816b872d1cfc423689560dc

  • SHA1

    6ca6c7c779c9ad90d51ea056043e59a6d87e4856

  • SHA256

    8c693a5b6d4a376573094f59da40716f06842fec39dec4c90beefb675f14c8fd

  • SHA512

    afbc348e8dfad93b271b41b6ce20a0e13689c30c59b997c79f8e3aa6dfe031d85b0fe4fd00623a8cac0c8d20d2dba5d11ec7923d9c5126ed9f171ada964cddfd

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      a59c61af2816b872d1cfc423689560dc

    • Size

      311KB

    • MD5

      a59c61af2816b872d1cfc423689560dc

    • SHA1

      6ca6c7c779c9ad90d51ea056043e59a6d87e4856

    • SHA256

      8c693a5b6d4a376573094f59da40716f06842fec39dec4c90beefb675f14c8fd

    • SHA512

      afbc348e8dfad93b271b41b6ce20a0e13689c30c59b997c79f8e3aa6dfe031d85b0fe4fd00623a8cac0c8d20d2dba5d11ec7923d9c5126ed9f171ada964cddfd

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks