General

  • Target

    e106b5a92953320e4c39b4f90ac68aacb1aee167ed6de2316f4fe0c864b7abf3

  • Size

    362KB

  • Sample

    241109-e2wptaxfmj

  • MD5

    cf008a87176796c109ed9265a215ff69

  • SHA1

    794b25570165b20146417d6a00d3e45abd9ec240

  • SHA256

    e106b5a92953320e4c39b4f90ac68aacb1aee167ed6de2316f4fe0c864b7abf3

  • SHA512

    b9aa1fcb4d2f0a91691d464960eeeccffdc9418856693f568d88da3fcd157224eb7900942ac408275ccd12ade6bf74dec33fb7fabb3f5935edbf0bd4671da642

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Targets

    • Target

      e106b5a92953320e4c39b4f90ac68aacb1aee167ed6de2316f4fe0c864b7abf3

    • Size

      362KB

    • MD5

      cf008a87176796c109ed9265a215ff69

    • SHA1

      794b25570165b20146417d6a00d3e45abd9ec240

    • SHA256

      e106b5a92953320e4c39b4f90ac68aacb1aee167ed6de2316f4fe0c864b7abf3

    • SHA512

      b9aa1fcb4d2f0a91691d464960eeeccffdc9418856693f568d88da3fcd157224eb7900942ac408275ccd12ade6bf74dec33fb7fabb3f5935edbf0bd4671da642

    • SSDEEP

      6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks