General

  • Target

    f0506cf76cf22ff3e0a1c5ecbe235890a68de0e3ba2fdc90424cfd008d25fc79

  • Size

    1.8MB

  • Sample

    241110-bjfn4awdnn

  • MD5

    d12c03a3887dbfe0daa63d4809a9d960

  • SHA1

    72dbda2107f0eb1e9bd9a65af29f6331608326a8

  • SHA256

    f0506cf76cf22ff3e0a1c5ecbe235890a68de0e3ba2fdc90424cfd008d25fc79

  • SHA512

    acf44547c987ff015b4d244bacee9bc0c9e10d9c4b4fe19cf12a08f33b55cc722fca96948c34b0ca377fda113be57544d11b34503b8cd101f50c2c542a4e51d6

  • SSDEEP

    49152:PVGvs+hV8/tMcYcJ5+tob2h3dm1JravK2aDL+snNwggNo8P4cN3VFu3MoGFXmJXh:ENn8/GcPJUtobm3dm1JevK2aDL+snNwy

Malware Config

Extracted

Family

redline

C2

79.137.192.9:19788

Attributes
  • auth_value

    e841f48e3292bfeef1c871052a3e45e9

Targets

    • Target

      f0506cf76cf22ff3e0a1c5ecbe235890a68de0e3ba2fdc90424cfd008d25fc79

    • Size

      1.8MB

    • MD5

      d12c03a3887dbfe0daa63d4809a9d960

    • SHA1

      72dbda2107f0eb1e9bd9a65af29f6331608326a8

    • SHA256

      f0506cf76cf22ff3e0a1c5ecbe235890a68de0e3ba2fdc90424cfd008d25fc79

    • SHA512

      acf44547c987ff015b4d244bacee9bc0c9e10d9c4b4fe19cf12a08f33b55cc722fca96948c34b0ca377fda113be57544d11b34503b8cd101f50c2c542a4e51d6

    • SSDEEP

      49152:PVGvs+hV8/tMcYcJ5+tob2h3dm1JravK2aDL+snNwggNo8P4cN3VFu3MoGFXmJXh:ENn8/GcPJUtobm3dm1JevK2aDL+snNwy

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks