General

  • Target

    66bf531465c044b9712bf3f220150bf978c84ef2b02103d997d55edb0780a6e6

  • Size

    175KB

  • Sample

    241111-25jkzsxqhw

  • MD5

    8ae4ec72ebb0e987edb459a01e5aae4e

  • SHA1

    b814828eba1548ba04adaf4a73d6a6dcaa14e7d0

  • SHA256

    66bf531465c044b9712bf3f220150bf978c84ef2b02103d997d55edb0780a6e6

  • SHA512

    73be1df36b3fee24730101c52df7e677da313ad9c2c361b603f3d39cd715086a18bbf629b2b615f7a0464b9b108f74cf2d9e2fa62ec74af2915936730ff2b160

  • SSDEEP

    3072:4xqZWZRanU2n0/Z62eJ5evJ9ih+PxNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jOm:mqZg/Z6XJIih

Malware Config

Extracted

Family

redline

Botnet

from

C2

176.113.115.145:4125

Attributes
  • auth_value

    8633e283485822a4a48f0a41d5397566

Targets

    • Target

      66bf531465c044b9712bf3f220150bf978c84ef2b02103d997d55edb0780a6e6

    • Size

      175KB

    • MD5

      8ae4ec72ebb0e987edb459a01e5aae4e

    • SHA1

      b814828eba1548ba04adaf4a73d6a6dcaa14e7d0

    • SHA256

      66bf531465c044b9712bf3f220150bf978c84ef2b02103d997d55edb0780a6e6

    • SHA512

      73be1df36b3fee24730101c52df7e677da313ad9c2c361b603f3d39cd715086a18bbf629b2b615f7a0464b9b108f74cf2d9e2fa62ec74af2915936730ff2b160

    • SSDEEP

      3072:4xqZWZRanU2n0/Z62eJ5evJ9ih+PxNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jOm:mqZg/Z6XJIih

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks