General

  • Target

    25bb02c75d552c9cef636c9f4fa5265f30995cc661feb1d6733d4227f479f777

  • Size

    353KB

  • Sample

    241109-zc5xea1hrg

  • MD5

    b9745bdf57c0ff07178c9eeb8f18cc58

  • SHA1

    6800b61d5b32ffe3943479026884528935ef3da4

  • SHA256

    25bb02c75d552c9cef636c9f4fa5265f30995cc661feb1d6733d4227f479f777

  • SHA512

    6f1b075f4994911f06bd25952e498b99bcca0bb1ad9c0bf52e8deec4fb2f0af4c13adef358fc4ae2d5f73b992ed1f03586bd53663fbf1e3e4bf68dd4d46562e9

  • SSDEEP

    6144:/lL+kBa2JsCmT/JYmyIYxoJHrh1IgbmrRc8pL7gY7Ztkjt:/R+0aWsCmOpIHrHIdO8pL7b7Gt

Malware Config

Extracted

Family

redline

Botnet

rosn

C2

176.113.115.145:4125

Attributes
  • auth_value

    050a19e1db4d0024b0f23b37dcf961f4

Targets

    • Target

      25bb02c75d552c9cef636c9f4fa5265f30995cc661feb1d6733d4227f479f777

    • Size

      353KB

    • MD5

      b9745bdf57c0ff07178c9eeb8f18cc58

    • SHA1

      6800b61d5b32ffe3943479026884528935ef3da4

    • SHA256

      25bb02c75d552c9cef636c9f4fa5265f30995cc661feb1d6733d4227f479f777

    • SHA512

      6f1b075f4994911f06bd25952e498b99bcca0bb1ad9c0bf52e8deec4fb2f0af4c13adef358fc4ae2d5f73b992ed1f03586bd53663fbf1e3e4bf68dd4d46562e9

    • SSDEEP

      6144:/lL+kBa2JsCmT/JYmyIYxoJHrh1IgbmrRc8pL7gY7Ztkjt:/R+0aWsCmOpIHrHIdO8pL7b7Gt

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks