General

  • Target

    a2a7f6e30fbdcf3faf683586d91ef943

  • Size

    407KB

  • Sample

    241109-m1tstsslaz

  • MD5

    a2a7f6e30fbdcf3faf683586d91ef943

  • SHA1

    a55bade6ff1fa71c088b7c55a365ad02d1865b0a

  • SHA256

    664bf2c0bae31f468f35a2b133b5d8154294fb5720773b30503ad9df0e73625d

  • SHA512

    a80571db90caf9448d078df13773fc64f97506849dc40ffd618631ccaedf094751c33f32c16f502d6385231e76eb461aee367514d2a187f1f9b84a4cafd291c7

  • SSDEEP

    12288:t6PhF7P07sYCWyKrdsHVHBQwT2f2+m6ERNP:407sYz/MhQwibEj

Malware Config

Extracted

Family

redline

Botnet

ww

C2

193.106.191.67:44400

Attributes
  • auth_value

    5a1b28ccd05953f5c3f99729c12427cc

Targets

    • Target

      a2a7f6e30fbdcf3faf683586d91ef943

    • Size

      407KB

    • MD5

      a2a7f6e30fbdcf3faf683586d91ef943

    • SHA1

      a55bade6ff1fa71c088b7c55a365ad02d1865b0a

    • SHA256

      664bf2c0bae31f468f35a2b133b5d8154294fb5720773b30503ad9df0e73625d

    • SHA512

      a80571db90caf9448d078df13773fc64f97506849dc40ffd618631ccaedf094751c33f32c16f502d6385231e76eb461aee367514d2a187f1f9b84a4cafd291c7

    • SSDEEP

      12288:t6PhF7P07sYCWyKrdsHVHBQwT2f2+m6ERNP:407sYz/MhQwibEj

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks