General

  • Target

    5a806d2d892913a502936ac5068545c1e588cb5506da86dca7cd38f00a6acbd7

  • Size

    316KB

  • Sample

    241109-zp9fcsvmbr

  • MD5

    33e1a681337a6e8412ad62bf1a93686a

  • SHA1

    04fd4d8e0d826cd0b3a625be788a03b914120b04

  • SHA256

    5a806d2d892913a502936ac5068545c1e588cb5506da86dca7cd38f00a6acbd7

  • SHA512

    dc93a5d12e44ad13a6b5b5e79a6f1d62b9f0f94913f60a51d9b7ed1fe7dd2021eb9548502ddc778ecbfaa20ddeb1639085df26b7db63323910116eed9585abcc

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      5a806d2d892913a502936ac5068545c1e588cb5506da86dca7cd38f00a6acbd7

    • Size

      316KB

    • MD5

      33e1a681337a6e8412ad62bf1a93686a

    • SHA1

      04fd4d8e0d826cd0b3a625be788a03b914120b04

    • SHA256

      5a806d2d892913a502936ac5068545c1e588cb5506da86dca7cd38f00a6acbd7

    • SHA512

      dc93a5d12e44ad13a6b5b5e79a6f1d62b9f0f94913f60a51d9b7ed1fe7dd2021eb9548502ddc778ecbfaa20ddeb1639085df26b7db63323910116eed9585abcc

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks