General

  • Target

    ec7744f81fda365c272aeed1e348e3c4

  • Size

    449KB

  • Sample

    241110-bsdwvswglc

  • MD5

    ec7744f81fda365c272aeed1e348e3c4

  • SHA1

    7e0d56e5ea4ee53b3d61269d5c91a1b21336ea5c

  • SHA256

    4936b0f173ead79fe71d1ceed6ef8c6111d1200f0e27538639d5d57650b61598

  • SHA512

    3c898ca2bc741d9ae8236f50df5645080bee847a5e4a9511864ffd69a1c309c20321f0b253a56e6cd8747a7ef7688023eb80fdc858af9de9be1239fec837960e

  • SSDEEP

    12288:93gN5CAoWLUcJzYzwW0T9M6K9onLx0WcBM:HAoWoOW0hM6TnLxMM

Malware Config

Extracted

Family

redline

Botnet

ww

C2

193.106.191.67:44400

Attributes
  • auth_value

    5a1b28ccd05953f5c3f99729c12427cc

Targets

    • Target

      ec7744f81fda365c272aeed1e348e3c4

    • Size

      449KB

    • MD5

      ec7744f81fda365c272aeed1e348e3c4

    • SHA1

      7e0d56e5ea4ee53b3d61269d5c91a1b21336ea5c

    • SHA256

      4936b0f173ead79fe71d1ceed6ef8c6111d1200f0e27538639d5d57650b61598

    • SHA512

      3c898ca2bc741d9ae8236f50df5645080bee847a5e4a9511864ffd69a1c309c20321f0b253a56e6cd8747a7ef7688023eb80fdc858af9de9be1239fec837960e

    • SSDEEP

      12288:93gN5CAoWLUcJzYzwW0T9M6K9onLx0WcBM:HAoWoOW0hM6TnLxMM

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks