General

  • Target

    8e9c1ba8033f7b8cae78424ecbcef12b36738ec82e983216615c2bc2069ef072

  • Size

    361KB

  • Sample

    241109-y7wrjs1grh

  • MD5

    9a6e14f05a426ef710e3b1c6196acd8d

  • SHA1

    c50445a6b4ad68ba52e5ee28f5951e9b5a58761e

  • SHA256

    8e9c1ba8033f7b8cae78424ecbcef12b36738ec82e983216615c2bc2069ef072

  • SHA512

    04bc63798ebdc80007d38e298fde93dbd8215a9fdbac35d773c68bada239996d446f16eedc818596c308963f840937262fc92bb2f0d12c144c4a2e39c1082c0c

  • SSDEEP

    6144:O8TN+ary96pn/z+/y/LC/Lw4t+HwL52SnlF7JcLHJInEx1ri/zmnACLt4C/hoqB+:RTN+arc6pn/2y+/L7+HwL1Flc1IFCXPg

Malware Config

Extracted

Family

redline

Botnet

@new@2023

C2

77.73.133.62:22344

Attributes
  • auth_value

    8284279aedaed026a9b7cb9c1c0be4e4

Targets

    • Target

      cc326da5e0e59d6425d24eaef0e3ff6d275be5efcaadb435f99c593f5f5151c0

    • Size

      497KB

    • MD5

      873756745782778ff5152f5fa6e31b3a

    • SHA1

      512db9c333d1003bd701ab5399f72fdc316766f7

    • SHA256

      cc326da5e0e59d6425d24eaef0e3ff6d275be5efcaadb435f99c593f5f5151c0

    • SHA512

      ad50ba6b1064c6d1510f7c55b2e558b784aa3c70be29726f88953d0ffe834414d01d40a4fc52d1aaa1b41588787cc2415a807766887d580eb87beee933c6942b

    • SSDEEP

      12288:198ircpy+ZL7+fwL3FlcPIBlZoxupmL9:zfoE+R4wZlwIBDoUYL

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks