General

  • Target

    4048be66b7e2140643192282a9ee40bb

  • Size

    320KB

  • Sample

    241110-bfwk5swelc

  • MD5

    4048be66b7e2140643192282a9ee40bb

  • SHA1

    544538419b6fc10c71126207a08d1123c3302e56

  • SHA256

    fe98ec32c294ded5da07bf7687f06085f334fdad191fae8d31b610ad5fbec9bb

  • SHA512

    9836a981be838b00c64c229bdf2ea5a83e4cf0b1cc869f642ddfc600b72455a36f8ea6a6beb2acc779629efd0455bcabc93f1f735e6461fa953709bbfb726591

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      4048be66b7e2140643192282a9ee40bb

    • Size

      320KB

    • MD5

      4048be66b7e2140643192282a9ee40bb

    • SHA1

      544538419b6fc10c71126207a08d1123c3302e56

    • SHA256

      fe98ec32c294ded5da07bf7687f06085f334fdad191fae8d31b610ad5fbec9bb

    • SHA512

      9836a981be838b00c64c229bdf2ea5a83e4cf0b1cc869f642ddfc600b72455a36f8ea6a6beb2acc779629efd0455bcabc93f1f735e6461fa953709bbfb726591

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks