General

  • Target

    337f9f16502b7cd9fe0efbe9fd54e75c9f6e00792b38ee0151f6c597f1c12793

  • Size

    175KB

  • Sample

    241109-zx14yssdnq

  • MD5

    534e350d481f8c81ba90a20eefc9dc52

  • SHA1

    701a7b74265a721f627565304788ffd7d72ab997

  • SHA256

    337f9f16502b7cd9fe0efbe9fd54e75c9f6e00792b38ee0151f6c597f1c12793

  • SHA512

    89bd5ab3292958caa26b2d98d0fc3634898b90296580e3f41eb62d093188f18745fc64942366f2c99978ac4015ee9979d14280e914d394e475cb635cc7322138

  • SSDEEP

    3072:RxqZWDdxafU74XRVuNsceB/FrhavxNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jOM:DqZcIRVuWHrh

Malware Config

Extracted

Family

redline

Botnet

fchan

C2

pepunn.com:4162

Attributes
  • auth_value

    127bd53d55e8c4f0dd2f6e1ea60deef4

Targets

    • Target

      337f9f16502b7cd9fe0efbe9fd54e75c9f6e00792b38ee0151f6c597f1c12793

    • Size

      175KB

    • MD5

      534e350d481f8c81ba90a20eefc9dc52

    • SHA1

      701a7b74265a721f627565304788ffd7d72ab997

    • SHA256

      337f9f16502b7cd9fe0efbe9fd54e75c9f6e00792b38ee0151f6c597f1c12793

    • SHA512

      89bd5ab3292958caa26b2d98d0fc3634898b90296580e3f41eb62d093188f18745fc64942366f2c99978ac4015ee9979d14280e914d394e475cb635cc7322138

    • SSDEEP

      3072:RxqZWDdxafU74XRVuNsceB/FrhavxNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jOM:DqZcIRVuWHrh

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks