General

  • Target

    eff169bbd924ef8cfe0ff7d067bb26ce

  • Size

    314KB

  • Sample

    241109-m9fbsssmcx

  • MD5

    eff169bbd924ef8cfe0ff7d067bb26ce

  • SHA1

    bf4fc1a2211b5fb0b313ba0b3cb1529e369de43b

  • SHA256

    994f4529831cf81d2c7fb6dbdc0a56757ef676366bcd54c9aff66ea89b2ec3a1

  • SHA512

    9b8e434a10c7d18bb8991efcfaae2cebfe58ff7e7e331dadad7b0c472ad4e0f5509d6c2f566503005717be8c910106459e0788c82106443c72fd5b4f0e6d6445

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      eff169bbd924ef8cfe0ff7d067bb26ce

    • Size

      314KB

    • MD5

      eff169bbd924ef8cfe0ff7d067bb26ce

    • SHA1

      bf4fc1a2211b5fb0b313ba0b3cb1529e369de43b

    • SHA256

      994f4529831cf81d2c7fb6dbdc0a56757ef676366bcd54c9aff66ea89b2ec3a1

    • SHA512

      9b8e434a10c7d18bb8991efcfaae2cebfe58ff7e7e331dadad7b0c472ad4e0f5509d6c2f566503005717be8c910106459e0788c82106443c72fd5b4f0e6d6445

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks