General

  • Target

    17318ac369ce0474f9ea721d18614113ce4caede45eb6d15bc331b7fa6c688a5N

  • Size

    169KB

  • Sample

    241109-z7ptnssfkm

  • MD5

    80018693de30977961d0ccdf22b67890

  • SHA1

    6186883dd068a21222e5134cf11a423d9f19fb3a

  • SHA256

    17318ac369ce0474f9ea721d18614113ce4caede45eb6d15bc331b7fa6c688a5

  • SHA512

    f4961280cb3954245549a19309a2f37aad36e059a5a611591e74fc7ff4f4c8b6cd6b4182cbc1e4868b253c8a3965d435b76310c339ce2de5645a130e0dffc76d

  • SSDEEP

    1536:zR1B8iqlVZRGWcAL4rMeV0HB3PE3+GnTGqVkbutpPljdzXgPw83wYk58e8hp:9n8U0Z/EOVqV8OVdzXgPwL8e8hp

Malware Config

Extracted

Family

redline

Botnet

most

C2

185.161.248.73:4164

Attributes
  • auth_value

    7da4dfa153f2919e617aa016f7c36008

Targets

    • Target

      17318ac369ce0474f9ea721d18614113ce4caede45eb6d15bc331b7fa6c688a5N

    • Size

      169KB

    • MD5

      80018693de30977961d0ccdf22b67890

    • SHA1

      6186883dd068a21222e5134cf11a423d9f19fb3a

    • SHA256

      17318ac369ce0474f9ea721d18614113ce4caede45eb6d15bc331b7fa6c688a5

    • SHA512

      f4961280cb3954245549a19309a2f37aad36e059a5a611591e74fc7ff4f4c8b6cd6b4182cbc1e4868b253c8a3965d435b76310c339ce2de5645a130e0dffc76d

    • SSDEEP

      1536:zR1B8iqlVZRGWcAL4rMeV0HB3PE3+GnTGqVkbutpPljdzXgPw83wYk58e8hp:9n8U0Z/EOVqV8OVdzXgPwL8e8hp

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks