General

  • Target

    ec9da72e5d7528ab80d8a6f2d42295b2d5629842a76ac2b4a6d456f7cd489da3

  • Size

    329KB

  • Sample

    241110-bnjljswelr

  • MD5

    0adbcccc97c49b9428369bce49e729db

  • SHA1

    db9890caf4bd5757925b67f7618f7d58fcf2eb81

  • SHA256

    ec9da72e5d7528ab80d8a6f2d42295b2d5629842a76ac2b4a6d456f7cd489da3

  • SHA512

    e95fdc3907beaf5b0642b207ad46180f700de9dc6b21cfb8b2b69961ea062618bb7cb65f160981ea3901169b11d487be1c9a592e46b9c17ce5cb7f024aeb106f

  • SSDEEP

    6144:EPSPoaeiC8Ib4veUOnkMn8WHgIPf8Lm1HPfmfidTpIcY4B8:EPSPiIIkverDHNPf8LwmfiXIN4B8

Malware Config

Extracted

Family

redline

Botnet

@2023@New

C2

91.215.85.155:32796

Attributes
  • auth_value

    0be5b9b84cd5b707e91a48e341e3f7d7

Targets

    • Target

      13112e1bf79a05434ae276586b1589dd619c42c7974f575ee1bfcb5ff43cfe78

    • Size

      466KB

    • MD5

      ece1d6ce82a51499f4cff56781b2e9a7

    • SHA1

      db7ebcb25990706bc2a522ad75dfc6ca1dd8902a

    • SHA256

      13112e1bf79a05434ae276586b1589dd619c42c7974f575ee1bfcb5ff43cfe78

    • SHA512

      5a41fe37ee14aafef09c06b34d987f963acf0dde0ebaedb907116136df7033270930426dd23e9a8f64243c0a3b4f6cfa014421e043a91b37dba2913e7bc2451c

    • SSDEEP

      6144:zRLfMVKoR9IV8It4veUOnkMX8WHgIzf8LmTsGJoxupmLB5rSJ/jT:zRAK2fIuverTHNzf8LvAoxupmLX

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks