General

  • Target

    24a3737cc9c9ed327d335684de37b6e014c4b771

  • Size

    363KB

  • Sample

    241110-xmgw8awlgn

  • MD5

    db6dfc718b1b3e38f600f7a56083943f

  • SHA1

    24a3737cc9c9ed327d335684de37b6e014c4b771

  • SHA256

    5745b46ebacc6296f699f229e1c641a838f6d136b06ebdc680dfbbc9149ce21c

  • SHA512

    fe75cb0245cd12756f5700bb2611468f78834946ec82b80b28c528b27596e688a9bf39b0792877dbffc56fa8e8d140b3a0418764615a296c5e48cefaa001a363

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Targets

    • Target

      24a3737cc9c9ed327d335684de37b6e014c4b771

    • Size

      363KB

    • MD5

      db6dfc718b1b3e38f600f7a56083943f

    • SHA1

      24a3737cc9c9ed327d335684de37b6e014c4b771

    • SHA256

      5745b46ebacc6296f699f229e1c641a838f6d136b06ebdc680dfbbc9149ce21c

    • SHA512

      fe75cb0245cd12756f5700bb2611468f78834946ec82b80b28c528b27596e688a9bf39b0792877dbffc56fa8e8d140b3a0418764615a296c5e48cefaa001a363

    • SSDEEP

      6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks