General

  • Target

    fde41baef0359c018ecd749bf64a2948

  • Size

    321KB

  • Sample

    241109-nanpkawmbp

  • MD5

    fde41baef0359c018ecd749bf64a2948

  • SHA1

    cad15e0142ae986fd77ad9f024b7530879fb0553

  • SHA256

    81f3bc7a9d01d4c8ca968d9d2e702d993b3f007fed0cf6ca13266ccde3205a11

  • SHA512

    56df91d19e55f9d1bdf221afbf1c15b44718ab73c1f4bed5e422b63f917fcf53efeb3d49848ed992c2e422168e976aa0213bf46c5609eabfdb539245bed0d58a

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      fde41baef0359c018ecd749bf64a2948

    • Size

      321KB

    • MD5

      fde41baef0359c018ecd749bf64a2948

    • SHA1

      cad15e0142ae986fd77ad9f024b7530879fb0553

    • SHA256

      81f3bc7a9d01d4c8ca968d9d2e702d993b3f007fed0cf6ca13266ccde3205a11

    • SHA512

      56df91d19e55f9d1bdf221afbf1c15b44718ab73c1f4bed5e422b63f917fcf53efeb3d49848ed992c2e422168e976aa0213bf46c5609eabfdb539245bed0d58a

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks