General

  • Target

    2540eab58f62f6e7922230e45f30d75ba1d8be63106d4b364a66979eeb87fb4b

  • Size

    370KB

  • Sample

    241110-b213rawgnr

  • MD5

    54bd7545a4b0bd87bc2ae1d1f34ee34e

  • SHA1

    51c48d25534796edd2ffd92d46195cde30e75477

  • SHA256

    2540eab58f62f6e7922230e45f30d75ba1d8be63106d4b364a66979eeb87fb4b

  • SHA512

    af25069560ea0de169c08c0574849b995e1a7616b19f28d456670a75a3357d94f4cd608b69f7f14674ca81be25ed3f0c058a2c8c8c2c7aee48726882ec98a1ea

  • SSDEEP

    6144:wJsC76x9TcbhThqLAxqcqIFzwRN8NtEN9K0YI5lnO90fTHQu0X25qo/:w7y9TcbhThqCvqIFDEP5FlnO9GTHGXK

Malware Config

Extracted

Family

redline

Botnet

Runstaf

C2

193.233.48.58:38989

Attributes
  • auth_value

    5eba62ac5fe955a7d5dbe74c38a216e4

Targets

    • Target

      2540eab58f62f6e7922230e45f30d75ba1d8be63106d4b364a66979eeb87fb4b

    • Size

      370KB

    • MD5

      54bd7545a4b0bd87bc2ae1d1f34ee34e

    • SHA1

      51c48d25534796edd2ffd92d46195cde30e75477

    • SHA256

      2540eab58f62f6e7922230e45f30d75ba1d8be63106d4b364a66979eeb87fb4b

    • SHA512

      af25069560ea0de169c08c0574849b995e1a7616b19f28d456670a75a3357d94f4cd608b69f7f14674ca81be25ed3f0c058a2c8c8c2c7aee48726882ec98a1ea

    • SSDEEP

      6144:wJsC76x9TcbhThqLAxqcqIFzwRN8NtEN9K0YI5lnO90fTHQu0X25qo/:w7y9TcbhThqCvqIFDEP5FlnO9GTHGXK

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks