General

  • Target

    c9e5108a2f791c21d191f7f8de98ffdcef3655549b02beac046fd50a71525bf4N

  • Size

    352KB

  • Sample

    241109-ylbjgstmfr

  • MD5

    7c3c82a64ff9d32009e6b72ea2b4f980

  • SHA1

    825c310fc1e787f237d5108996818c5e493251a3

  • SHA256

    c9e5108a2f791c21d191f7f8de98ffdcef3655549b02beac046fd50a71525bf4

  • SHA512

    3d78ae2c798f32a85fb18889ec2e8efd1714a08d17e5a5466161b78cad1c6b1eb9794419e0daa4558f29993cabdc1ca41d618981835277adf817114eaee4c548

  • SSDEEP

    6144:yP5Z+5JiCnbBumrU6DfKm///w0XaSh4E+Ztkjt:yBZoJ3rU6RH/wjjGt

Malware Config

Extracted

Family

redline

Botnet

rosn

C2

176.113.115.145:4125

Attributes
  • auth_value

    050a19e1db4d0024b0f23b37dcf961f4

Targets

    • Target

      c9e5108a2f791c21d191f7f8de98ffdcef3655549b02beac046fd50a71525bf4N

    • Size

      352KB

    • MD5

      7c3c82a64ff9d32009e6b72ea2b4f980

    • SHA1

      825c310fc1e787f237d5108996818c5e493251a3

    • SHA256

      c9e5108a2f791c21d191f7f8de98ffdcef3655549b02beac046fd50a71525bf4

    • SHA512

      3d78ae2c798f32a85fb18889ec2e8efd1714a08d17e5a5466161b78cad1c6b1eb9794419e0daa4558f29993cabdc1ca41d618981835277adf817114eaee4c548

    • SSDEEP

      6144:yP5Z+5JiCnbBumrU6DfKm///w0XaSh4E+Ztkjt:yBZoJ3rU6RH/wjjGt

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks