General

  • Target

    f7faa72b58fd464caf73f3e8af854f463b535c40bdade73a7167bab15e664417

  • Size

    316KB

  • Sample

    241109-xtxw1szjdy

  • MD5

    7a7d82ef622b330cac953dc784abac3a

  • SHA1

    9b5343f600cd07f977e2de7d101784d63e38b739

  • SHA256

    f7faa72b58fd464caf73f3e8af854f463b535c40bdade73a7167bab15e664417

  • SHA512

    73594edaec285629224e376d66d08f9cef15d5c67142329b89c795347566858887d10e3e5c99a5ad1ae80afeb7553ec49b7af5d02c1ca0837f0dd46549736186

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      f7faa72b58fd464caf73f3e8af854f463b535c40bdade73a7167bab15e664417

    • Size

      316KB

    • MD5

      7a7d82ef622b330cac953dc784abac3a

    • SHA1

      9b5343f600cd07f977e2de7d101784d63e38b739

    • SHA256

      f7faa72b58fd464caf73f3e8af854f463b535c40bdade73a7167bab15e664417

    • SHA512

      73594edaec285629224e376d66d08f9cef15d5c67142329b89c795347566858887d10e3e5c99a5ad1ae80afeb7553ec49b7af5d02c1ca0837f0dd46549736186

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks