General

  • Target

    50a357a90ba1a3e3c5c5623aeec17bac9d8d9db0

  • Size

    307KB

  • Sample

    241109-yjv54szncs

  • MD5

    733b2f6b33e5ef15cf4bc553f778f19d

  • SHA1

    50a357a90ba1a3e3c5c5623aeec17bac9d8d9db0

  • SHA256

    7b65242453cbe8fe63e7996496d4f0773b17827420973f0a8dfbd7a7668cfe1a

  • SHA512

    791266299a997e71e8afd6764954725003cd42860875cad76805a2a2755e3f4a465256e526ed80fc5636d66b2c2b7a5171f56af75d4533d7c706cd877b42c0c8

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      50a357a90ba1a3e3c5c5623aeec17bac9d8d9db0

    • Size

      307KB

    • MD5

      733b2f6b33e5ef15cf4bc553f778f19d

    • SHA1

      50a357a90ba1a3e3c5c5623aeec17bac9d8d9db0

    • SHA256

      7b65242453cbe8fe63e7996496d4f0773b17827420973f0a8dfbd7a7668cfe1a

    • SHA512

      791266299a997e71e8afd6764954725003cd42860875cad76805a2a2755e3f4a465256e526ed80fc5636d66b2c2b7a5171f56af75d4533d7c706cd877b42c0c8

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks