General

  • Target

    d038e149e13ea36b4b880803dc23821bbc7ae9f9069744c85e2ec76b7474db3a

  • Size

    248KB

  • Sample

    241109-x4y7ts1akq

  • MD5

    17426f1992d45c738eb92f4eb11aab46

  • SHA1

    85507de66165773cab2308d88acce369481b6fa2

  • SHA256

    d038e149e13ea36b4b880803dc23821bbc7ae9f9069744c85e2ec76b7474db3a

  • SHA512

    6bf3fbfbbcd7d376b9e84ada745c8fe7acddc7fa74a1ffddc5eb6517a71e869cb13d8edaa4b44238d23a8c368af01b3dbdcec9dc4bebde33f7dd733b8009272f

  • SSDEEP

    3072:Yy6joELH6Vt7CsfMvJq9pGzEM+wCFJDC+glo40jLcKhJqnFLpxNn2pU9f2MKTV/u:Yy6jwbfMvo9pjM+wCFZJsKhYn

Malware Config

Extracted

Family

redline

Botnet

rosto

C2

hueref.eu:4162

Attributes
  • auth_value

    07d81eba8cad42bbd0ae60042d48eac6

Targets

    • Target

      d038e149e13ea36b4b880803dc23821bbc7ae9f9069744c85e2ec76b7474db3a

    • Size

      248KB

    • MD5

      17426f1992d45c738eb92f4eb11aab46

    • SHA1

      85507de66165773cab2308d88acce369481b6fa2

    • SHA256

      d038e149e13ea36b4b880803dc23821bbc7ae9f9069744c85e2ec76b7474db3a

    • SHA512

      6bf3fbfbbcd7d376b9e84ada745c8fe7acddc7fa74a1ffddc5eb6517a71e869cb13d8edaa4b44238d23a8c368af01b3dbdcec9dc4bebde33f7dd733b8009272f

    • SSDEEP

      3072:Yy6joELH6Vt7CsfMvJq9pGzEM+wCFJDC+glo40jLcKhJqnFLpxNn2pU9f2MKTV/u:Yy6jwbfMvo9pjM+wCFZJsKhYn

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks