General

  • Target

    7f948981b057ab73e9b54f22a7c99727c88344433f617ea41310651e6966ac75

  • Size

    291KB

  • Sample

    241109-zf1rvsvkej

  • MD5

    75eb7261fefc0a3e8b57993a87be2288

  • SHA1

    ce00935895b7882213a66bb7236c1e746cadd4f6

  • SHA256

    7f948981b057ab73e9b54f22a7c99727c88344433f617ea41310651e6966ac75

  • SHA512

    506e62309a4906580a1f2ac606760f75e78ed9623d29f2e32b48a1c0868462f64a7beb74bd151bb13509b2a55df1ba5f20401d31f5e4fb17e23cb996ed520b5d

  • SSDEEP

    6144:PQEP2WYVH6RHybOXW+15Qq1wRvWT66h+1mLtwfHxJBYnSd:IDHuQ+1j1AmBe5fRJd

Malware Config

Extracted

Family

redline

Botnet

@new@2023

C2

77.73.133.62:22344

Attributes
  • auth_value

    8284279aedaed026a9b7cb9c1c0be4e4

Targets

    • Target

      479802dc2034092c395527ea7dba682821a8f0d7f562e3f831e218f7d1aa79c5

    • Size

      382KB

    • MD5

      0a819349c3bf5433e85d55cb98cd22c4

    • SHA1

      e106c5003044a8318fa7de4f01ebd3746fc5ab32

    • SHA256

      479802dc2034092c395527ea7dba682821a8f0d7f562e3f831e218f7d1aa79c5

    • SHA512

      219c8e2af76505be3ff966ffe4fefc082f533d8f763c4c365d6b1d6e1d6a7e1e88e3e774ef91f10effebe3502f96bd4c62c4a45caad25aebadbdff146437a02c

    • SSDEEP

      6144:dQLaghjsybOXW+n5Qq1wRfWT66h+1iLtwfRVSzMrP61YDZ:Wtv+nj1WmBe9fDSzMr

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks