General

  • Target

    b395552fdedd76a129c45f042233e02a30309ed391994adcbbd50020aadbe8f1

  • Size

    104KB

  • Sample

    241109-ma3m2s1rbt

  • MD5

    8cb676abbe8be3a81c4d2adb4c1a9e3e

  • SHA1

    be73aac51350c4282f9f2ea49232da695c3614da

  • SHA256

    b395552fdedd76a129c45f042233e02a30309ed391994adcbbd50020aadbe8f1

  • SHA512

    c4b0806b035f69cd05b8a42590fa5a508871fc8da00af69aded29be6fe2c5f2861deb7cd2b6de37427229a8793ac56bf1821e7159ba7af552800b1aefc5ebc8a

  • SSDEEP

    1536:IO+zC1sM0XzZbYcav24KgNj0s8lkymq066t3zrVCbRAHubuMZddCm60wuei67Lo5:gC1sM0XlUcaFk9C66t3zrcAaPQm6hxI

Malware Config

Extracted

Family

redline

C2

185.148.39.219:47029

Attributes
  • auth_value

    0kvTRli8oZ3G0Ebejtwk

Targets

    • Target

      b395552fdedd76a129c45f042233e02a30309ed391994adcbbd50020aadbe8f1

    • Size

      104KB

    • MD5

      8cb676abbe8be3a81c4d2adb4c1a9e3e

    • SHA1

      be73aac51350c4282f9f2ea49232da695c3614da

    • SHA256

      b395552fdedd76a129c45f042233e02a30309ed391994adcbbd50020aadbe8f1

    • SHA512

      c4b0806b035f69cd05b8a42590fa5a508871fc8da00af69aded29be6fe2c5f2861deb7cd2b6de37427229a8793ac56bf1821e7159ba7af552800b1aefc5ebc8a

    • SSDEEP

      1536:IO+zC1sM0XzZbYcav24KgNj0s8lkymq066t3zrVCbRAHubuMZddCm60wuei67Lo5:gC1sM0XlUcaFk9C66t3zrcAaPQm6hxI

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks