General

  • Target

    4bd681047412f1d96007d5480798a36e

  • Size

    364KB

  • Sample

    241111-d456la1mfv

  • MD5

    4bd681047412f1d96007d5480798a36e

  • SHA1

    02879056330d805c9fb355c0fe7bbf9b48226f29

  • SHA256

    64c2e4428163fb342c4540b43bee8e65b1cc0baee3409e51d13edcc97652a954

  • SHA512

    922b49f163bd4ef0379c5773a264d0d153d12ba33d5e74e18163770d3bae5141dfee1ec8a99d09c53de5f541a19350da938fc95bfb51714fdf75922d77f041f5

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Targets

    • Target

      4bd681047412f1d96007d5480798a36e

    • Size

      364KB

    • MD5

      4bd681047412f1d96007d5480798a36e

    • SHA1

      02879056330d805c9fb355c0fe7bbf9b48226f29

    • SHA256

      64c2e4428163fb342c4540b43bee8e65b1cc0baee3409e51d13edcc97652a954

    • SHA512

      922b49f163bd4ef0379c5773a264d0d153d12ba33d5e74e18163770d3bae5141dfee1ec8a99d09c53de5f541a19350da938fc95bfb51714fdf75922d77f041f5

    • SSDEEP

      6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks