General

  • Target

    6da435c56e33202981a07199703b08f5f9bad8d22b7f166845bd432a38f8b167

  • Size

    308KB

  • Sample

    241109-3ay8matlc1

  • MD5

    06a8cad4428c634e0d93528dd53f4b4b

  • SHA1

    5066a68bda699c34ea9be77a40ab0fb18a1c6bfb

  • SHA256

    6da435c56e33202981a07199703b08f5f9bad8d22b7f166845bd432a38f8b167

  • SHA512

    500be83ef116c9d16137c1f7fcb1138ef1c2323deda5305ecd02519ac116325d924d0517437f5e81acd6ce9d94ed1d4b2ddcb0d21dcf995c2546a474b5b58a02

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      6da435c56e33202981a07199703b08f5f9bad8d22b7f166845bd432a38f8b167

    • Size

      308KB

    • MD5

      06a8cad4428c634e0d93528dd53f4b4b

    • SHA1

      5066a68bda699c34ea9be77a40ab0fb18a1c6bfb

    • SHA256

      6da435c56e33202981a07199703b08f5f9bad8d22b7f166845bd432a38f8b167

    • SHA512

      500be83ef116c9d16137c1f7fcb1138ef1c2323deda5305ecd02519ac116325d924d0517437f5e81acd6ce9d94ed1d4b2ddcb0d21dcf995c2546a474b5b58a02

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks