General

  • Target

    924579c16028d70dfec8fbc0a336c42f91715c281c0c4910b9e718e2e80a487f

  • Size

    323KB

  • Sample

    241109-ze75jssamf

  • MD5

    277eedc5d0c1e67966985814d2d196cb

  • SHA1

    8092eabcab21e01a36075b256532a855f902d110

  • SHA256

    924579c16028d70dfec8fbc0a336c42f91715c281c0c4910b9e718e2e80a487f

  • SHA512

    0691c7e589544650712f8c0d3fbb8f671a991cfb2f532d9ba88b231af08fe9e8cbe36576dbe2f9a7deb8b052d05a9c61fec39df49870c3d6e5feab4240358f52

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      924579c16028d70dfec8fbc0a336c42f91715c281c0c4910b9e718e2e80a487f

    • Size

      323KB

    • MD5

      277eedc5d0c1e67966985814d2d196cb

    • SHA1

      8092eabcab21e01a36075b256532a855f902d110

    • SHA256

      924579c16028d70dfec8fbc0a336c42f91715c281c0c4910b9e718e2e80a487f

    • SHA512

      0691c7e589544650712f8c0d3fbb8f671a991cfb2f532d9ba88b231af08fe9e8cbe36576dbe2f9a7deb8b052d05a9c61fec39df49870c3d6e5feab4240358f52

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks