General

  • Target

    38febbd666386c04178f8cffaf2021795297979725145ebeabefed03eb46f471

  • Size

    175KB

  • Sample

    241109-z55r4sserq

  • MD5

    95a50c8450b0e9fc47e8ab01e290de18

  • SHA1

    daaf6e59fc30232229d217d7f4fab9fc62ec8bbf

  • SHA256

    38febbd666386c04178f8cffaf2021795297979725145ebeabefed03eb46f471

  • SHA512

    37e1eada4da81c49f77b3e9bb4471fc7d379746fb0b2bedca0a505ff7b8925b77f307f6a8739cdb81ca7218bc11b2ac1ced02b2143fb181b1ce4ed516dd8802c

  • SSDEEP

    3072:OxqZWXragQx+/Z5reN5FchA/xNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jOuw+cU:0qZWZ5gch

Malware Config

Extracted

Family

redline

Botnet

forma

C2

193.233.20.24:4123

Attributes
  • auth_value

    50b8e065d7cb1e9e30786f7a370368f9

Targets

    • Target

      38febbd666386c04178f8cffaf2021795297979725145ebeabefed03eb46f471

    • Size

      175KB

    • MD5

      95a50c8450b0e9fc47e8ab01e290de18

    • SHA1

      daaf6e59fc30232229d217d7f4fab9fc62ec8bbf

    • SHA256

      38febbd666386c04178f8cffaf2021795297979725145ebeabefed03eb46f471

    • SHA512

      37e1eada4da81c49f77b3e9bb4471fc7d379746fb0b2bedca0a505ff7b8925b77f307f6a8739cdb81ca7218bc11b2ac1ced02b2143fb181b1ce4ed516dd8802c

    • SSDEEP

      3072:OxqZWXragQx+/Z5reN5FchA/xNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jOuw+cU:0qZWZ5gch

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks