General

  • Target

    46d24ce7556c4ef8e46ec85228360229

  • Size

    390KB

  • Sample

    241110-d362hayfqf

  • MD5

    46d24ce7556c4ef8e46ec85228360229

  • SHA1

    813e5bc860a1e7a9f8018f47dc00291605572220

  • SHA256

    b06eb541ecb00f104eaa8b274fe8649e921f814a73e48eaaf3c1dbe68bc8d434

  • SHA512

    38169c37fb43f485726c99f56bec0742a47364684865f7b0cbc323745aa51d0b89b4a7bfe1dfd49510ef31e71d103b05c92b501a0614c9c2aec639e172ea3fc4

  • SSDEEP

    6144:cSxDrJMkDHBU2VC+1qLpB3IxniplR4etJZ/W63KvttS/dXsiowyC2r:nxrJLUCp1qLpB3DpgetJVj3II/d81wk

Malware Config

Extracted

Family

redline

Botnet

RuzkiUNIKALNO

C2

193.233.48.58:38989

Attributes
  • auth_value

    c504b04cfbdd4bf85ce6195bcb37fba6

Targets

    • Target

      46d24ce7556c4ef8e46ec85228360229

    • Size

      390KB

    • MD5

      46d24ce7556c4ef8e46ec85228360229

    • SHA1

      813e5bc860a1e7a9f8018f47dc00291605572220

    • SHA256

      b06eb541ecb00f104eaa8b274fe8649e921f814a73e48eaaf3c1dbe68bc8d434

    • SHA512

      38169c37fb43f485726c99f56bec0742a47364684865f7b0cbc323745aa51d0b89b4a7bfe1dfd49510ef31e71d103b05c92b501a0614c9c2aec639e172ea3fc4

    • SSDEEP

      6144:cSxDrJMkDHBU2VC+1qLpB3IxniplR4etJZ/W63KvttS/dXsiowyC2r:nxrJLUCp1qLpB3DpgetJVj3II/d81wk

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks