General

  • Target

    7a0c35ddcac134f7610fa2cfb9fff21e8f7824fa

  • Size

    407KB

  • Sample

    241110-aw2awsvhrr

  • MD5

    4e632410b3eb12ddea6e6b90ba9a7c61

  • SHA1

    7a0c35ddcac134f7610fa2cfb9fff21e8f7824fa

  • SHA256

    37ecbb021461afd572cea1c853d6db145ca9c94ad0f8575f991789b44a3cd406

  • SHA512

    d13ab472b83da87e28b567b4266166cf1368b6d69eafd6d2015fafa14b1eb223af5f1f43e4ba69d761c595424af9ae4e5a1ae0330137e3382200f658978a3177

  • SSDEEP

    12288:9EviK64KoYNu/FtIvxWXTtGMvDfGMx9IPN8:L4KoyM8WXTtGgDfGy9IP

Malware Config

Extracted

Family

redline

Botnet

ww

C2

193.106.191.67:44400

Attributes
  • auth_value

    5a1b28ccd05953f5c3f99729c12427cc

Targets

    • Target

      7a0c35ddcac134f7610fa2cfb9fff21e8f7824fa

    • Size

      407KB

    • MD5

      4e632410b3eb12ddea6e6b90ba9a7c61

    • SHA1

      7a0c35ddcac134f7610fa2cfb9fff21e8f7824fa

    • SHA256

      37ecbb021461afd572cea1c853d6db145ca9c94ad0f8575f991789b44a3cd406

    • SHA512

      d13ab472b83da87e28b567b4266166cf1368b6d69eafd6d2015fafa14b1eb223af5f1f43e4ba69d761c595424af9ae4e5a1ae0330137e3382200f658978a3177

    • SSDEEP

      12288:9EviK64KoYNu/FtIvxWXTtGMvDfGMx9IPN8:L4KoyM8WXTtGgDfGy9IP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks