General

  • Target

    57bd349d16136e922bc6ab5a55219faea81383c2

  • Size

    363KB

  • Sample

    241109-czz84svkbv

  • MD5

    fa00bd15051ba20cd52754ed4c9534b9

  • SHA1

    57bd349d16136e922bc6ab5a55219faea81383c2

  • SHA256

    eac7d49ccb517b6514b8320a0c0162fc88c504ee91b787ca07b1b05d78477dc0

  • SHA512

    fe05458282e43891be2dcab51fad4700ed28e68dcde767516c8f8033fac1d03e5c11613e9d216fbd70968fdc9994a754d77deacf04c766b421f87d988c24ae91

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Targets

    • Target

      57bd349d16136e922bc6ab5a55219faea81383c2

    • Size

      363KB

    • MD5

      fa00bd15051ba20cd52754ed4c9534b9

    • SHA1

      57bd349d16136e922bc6ab5a55219faea81383c2

    • SHA256

      eac7d49ccb517b6514b8320a0c0162fc88c504ee91b787ca07b1b05d78477dc0

    • SHA512

      fe05458282e43891be2dcab51fad4700ed28e68dcde767516c8f8033fac1d03e5c11613e9d216fbd70968fdc9994a754d77deacf04c766b421f87d988c24ae91

    • SSDEEP

      6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks