General

  • Target

    d802d839ca51f176a1c870cd69190dbb

  • Size

    310KB

  • Sample

    241110-aw665swajk

  • MD5

    d802d839ca51f176a1c870cd69190dbb

  • SHA1

    914eafb0de461c4cb1cfc58f8eb1b7d855fe11ec

  • SHA256

    ebb12dc36e3fb48ccb4f27cc7bb3d2ad35824f694084190574414fb18ad87bdb

  • SHA512

    faef7ab838af3f33e3a1b3f3d5dd8afc665839ce228dd44e770f8b4d38f7a70e04d16dc42aa817a0da41eb9fc3789c2c276ba3af911d9d8a8f97c6813be99a8e

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      d802d839ca51f176a1c870cd69190dbb

    • Size

      310KB

    • MD5

      d802d839ca51f176a1c870cd69190dbb

    • SHA1

      914eafb0de461c4cb1cfc58f8eb1b7d855fe11ec

    • SHA256

      ebb12dc36e3fb48ccb4f27cc7bb3d2ad35824f694084190574414fb18ad87bdb

    • SHA512

      faef7ab838af3f33e3a1b3f3d5dd8afc665839ce228dd44e770f8b4d38f7a70e04d16dc42aa817a0da41eb9fc3789c2c276ba3af911d9d8a8f97c6813be99a8e

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks