General

  • Target

    d25df0431522838de7d7ead8e29797f5

  • Size

    364KB

  • Sample

    241111-e2erastanh

  • MD5

    d25df0431522838de7d7ead8e29797f5

  • SHA1

    1849d425fc0444eea71d697236df75f020ff5481

  • SHA256

    f0b4f8152191ffb48f1c3f45bcdcaad9a2b4443d2871f60f232e5a62592d36ae

  • SHA512

    0e051cb2ee3ee2c270983a8a477f9e126ee7b7abf68db2a1051e53ae5049999851531cb889ccc4e69fe5fb64a34baf2e3d8ea8f777d3f10241d094e21f8045bf

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Targets

    • Target

      d25df0431522838de7d7ead8e29797f5

    • Size

      364KB

    • MD5

      d25df0431522838de7d7ead8e29797f5

    • SHA1

      1849d425fc0444eea71d697236df75f020ff5481

    • SHA256

      f0b4f8152191ffb48f1c3f45bcdcaad9a2b4443d2871f60f232e5a62592d36ae

    • SHA512

      0e051cb2ee3ee2c270983a8a477f9e126ee7b7abf68db2a1051e53ae5049999851531cb889ccc4e69fe5fb64a34baf2e3d8ea8f777d3f10241d094e21f8045bf

    • SSDEEP

      6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks