General

  • Target

    baba702f77469a3be9226dd6c18b022753612b5f559d6ba7026a4711b3a19b92

  • Size

    298KB

  • Sample

    241110-bfhpaaypck

  • MD5

    698a1e03877d75c7ca29e26537ae7543

  • SHA1

    1864aee6764f16cc7c6c7ba04dd45be83a95451a

  • SHA256

    baba702f77469a3be9226dd6c18b022753612b5f559d6ba7026a4711b3a19b92

  • SHA512

    c5057511d8435c8f99f369a06a05097eada0f8b01680622400862205484cb347d61022a57f15df162fd191866dc11ca9f24d49cb7cd12b5759b23331d8e1d4cc

  • SSDEEP

    6144:hx5+pE7777777/3awhp8sQaTruxz4Xp8OSsj3iaheoVR2uW:fgp8p8sJT6xwSsucJDW

Malware Config

Extracted

Family

redline

Botnet

@2023@New

C2

91.215.85.155:32796

Attributes
  • auth_value

    0be5b9b84cd5b707e91a48e341e3f7d7

Targets

    • Target

      623b8e60b291adbf346308f05390f8b8dc6ad8bd40ba6dcf47216570e0b65a50

    • Size

      402KB

    • MD5

      f7e6bcafe7832ac2025f362740d2ac2d

    • SHA1

      017d2071e377259e1ceb6dd19a6f975045438e7d

    • SHA256

      623b8e60b291adbf346308f05390f8b8dc6ad8bd40ba6dcf47216570e0b65a50

    • SHA512

      869a404075531ae5406b6fa8596091e3b11c23f28d753e061327ca25cb72f823af24e639c549b296b65d9b9cadd32709f48c4b1bce8a6efb7dc1c892cff9f011

    • SSDEEP

      6144:taMLnQ2W8sQITruxh4X98O4sjfOlt9UZdLaYon5Jk4eROw1g:kMzq8sNT6xA4sDOlodin5JF

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks