General

  • Target

    852650776c3a8683e9b27e2db39c821c6c510f6638bd57ce1ade42d7b916ba61

  • Size

    360KB

  • Sample

    241109-dfbbbawcpc

  • MD5

    da715742181f15c69cec71ec55a5e8a5

  • SHA1

    28fc7a5f7ef02c505a41f0a1e8e267d35a5b8555

  • SHA256

    852650776c3a8683e9b27e2db39c821c6c510f6638bd57ce1ade42d7b916ba61

  • SHA512

    46d6627e1f12d6aa715345fe97a406c35e2bee0d84cdd2b882547d3c40599d7a71d06a291827f6ddf8a7951c22b45a4351f0da7cc60e4b86e98f4ab13741b456

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Targets

    • Target

      852650776c3a8683e9b27e2db39c821c6c510f6638bd57ce1ade42d7b916ba61

    • Size

      360KB

    • MD5

      da715742181f15c69cec71ec55a5e8a5

    • SHA1

      28fc7a5f7ef02c505a41f0a1e8e267d35a5b8555

    • SHA256

      852650776c3a8683e9b27e2db39c821c6c510f6638bd57ce1ade42d7b916ba61

    • SHA512

      46d6627e1f12d6aa715345fe97a406c35e2bee0d84cdd2b882547d3c40599d7a71d06a291827f6ddf8a7951c22b45a4351f0da7cc60e4b86e98f4ab13741b456

    • SSDEEP

      6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks