General

  • Target

    370cbd665b827acc295a468d1fbe24d741deec22f9f4e875bd2bc2ec8c4928bf

  • Size

    319KB

  • Sample

    241109-y6sy9s1gmm

  • MD5

    605452f8bd4ce00f09926a25b8fb5f60

  • SHA1

    0715b3daf855ca13fa69d07e1406622c59fc3b84

  • SHA256

    370cbd665b827acc295a468d1fbe24d741deec22f9f4e875bd2bc2ec8c4928bf

  • SHA512

    01708c23a7619dbf578ad697902b6052dbc101a6dc43c83dd3ced65fd4849277264fbb68a3b9e870b443f59540c313ed2987dfff321ce1d1060fa1734c33ba80

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      370cbd665b827acc295a468d1fbe24d741deec22f9f4e875bd2bc2ec8c4928bf

    • Size

      319KB

    • MD5

      605452f8bd4ce00f09926a25b8fb5f60

    • SHA1

      0715b3daf855ca13fa69d07e1406622c59fc3b84

    • SHA256

      370cbd665b827acc295a468d1fbe24d741deec22f9f4e875bd2bc2ec8c4928bf

    • SHA512

      01708c23a7619dbf578ad697902b6052dbc101a6dc43c83dd3ced65fd4849277264fbb68a3b9e870b443f59540c313ed2987dfff321ce1d1060fa1734c33ba80

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks