General

  • Target

    14b21c864642d5f2c545d3e177e2b2506f5d3d2d

  • Size

    309KB

  • Sample

    241109-y775kstrhj

  • MD5

    dc26954ab23e3d2e3b48bfcc6a431335

  • SHA1

    14b21c864642d5f2c545d3e177e2b2506f5d3d2d

  • SHA256

    ff338e7806d0e6d6af33cb7a38e747631ba3b563ef08b25e8c3bd3f1846eb8e8

  • SHA512

    3011e87beeb7c52d8a2e40fe03d0c36f7fbdc0ba4976c016badaeb958397e2ba2ca27faea223dea9069b4d596beaa69097612194b3663b0fc8ea053bb9e0cf7f

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      14b21c864642d5f2c545d3e177e2b2506f5d3d2d

    • Size

      309KB

    • MD5

      dc26954ab23e3d2e3b48bfcc6a431335

    • SHA1

      14b21c864642d5f2c545d3e177e2b2506f5d3d2d

    • SHA256

      ff338e7806d0e6d6af33cb7a38e747631ba3b563ef08b25e8c3bd3f1846eb8e8

    • SHA512

      3011e87beeb7c52d8a2e40fe03d0c36f7fbdc0ba4976c016badaeb958397e2ba2ca27faea223dea9069b4d596beaa69097612194b3663b0fc8ea053bb9e0cf7f

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks