General

  • Target

    4959ee04dd5ed577d1c66dc7ece67d373cfad9f0

  • Size

    304KB

  • Sample

    241110-awfn7awbje

  • MD5

    d258306f9a6cf0204292dc33a9e47a8b

  • SHA1

    4959ee04dd5ed577d1c66dc7ece67d373cfad9f0

  • SHA256

    24dbc42a9786c6710b57014e1e54dbc3826d20c27ff14a1dd56058c1adec4c63

  • SHA512

    5f16839ad0ea0b3ffc1eee65353f97dd9622368fc7cd8ad83ce59b294dc579c85044a11958f95e204e94801c813a7e5084c50bb919f2bcf5f7fc8e9abce4b879

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      4959ee04dd5ed577d1c66dc7ece67d373cfad9f0

    • Size

      304KB

    • MD5

      d258306f9a6cf0204292dc33a9e47a8b

    • SHA1

      4959ee04dd5ed577d1c66dc7ece67d373cfad9f0

    • SHA256

      24dbc42a9786c6710b57014e1e54dbc3826d20c27ff14a1dd56058c1adec4c63

    • SHA512

      5f16839ad0ea0b3ffc1eee65353f97dd9622368fc7cd8ad83ce59b294dc579c85044a11958f95e204e94801c813a7e5084c50bb919f2bcf5f7fc8e9abce4b879

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks