General

  • Target

    3fb738decb56ef684cc0f1e401632565

  • Size

    361KB

  • Sample

    241111-b6pwaazckm

  • MD5

    3fb738decb56ef684cc0f1e401632565

  • SHA1

    105b8e0c9a98d7801aa7f3a0174e5388b3549795

  • SHA256

    7349755d082c49355139424bf37c39f8c7396e8c7cf76bff41f9b8f90ebad204

  • SHA512

    b4f466cb195b39581b11ea2980b78fea8f291458207456365dcdf6eeb8e07d089ed353beb094b8f242f80ba6a2b916276aa7b1f03ef0b6545c9aa108c5b5a690

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Targets

    • Target

      3fb738decb56ef684cc0f1e401632565

    • Size

      361KB

    • MD5

      3fb738decb56ef684cc0f1e401632565

    • SHA1

      105b8e0c9a98d7801aa7f3a0174e5388b3549795

    • SHA256

      7349755d082c49355139424bf37c39f8c7396e8c7cf76bff41f9b8f90ebad204

    • SHA512

      b4f466cb195b39581b11ea2980b78fea8f291458207456365dcdf6eeb8e07d089ed353beb094b8f242f80ba6a2b916276aa7b1f03ef0b6545c9aa108c5b5a690

    • SSDEEP

      6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks