General

  • Target

    789b7510c96619f42a720cdf6b4fc1991a1f93b4fb21acf97c7b7a845c3dc691

  • Size

    372KB

  • Sample

    241111-gg399stkc1

  • MD5

    5146962e84672a8341f83c69a2eb0911

  • SHA1

    2a472090567cf157381ae8f93d2eb7a7e2fa366e

  • SHA256

    789b7510c96619f42a720cdf6b4fc1991a1f93b4fb21acf97c7b7a845c3dc691

  • SHA512

    c66ec7144afc831bc95bc3a2ce6700b507771bca00fdf6e6bb7218d626c2dab5c5512242aa20fa9b282e1225090b4f462bb19ec2756ba04114f69dab22d85389

  • SSDEEP

    6144:fEgPbjXJRuDWPBGWZnKaSbSbT8oj3Xem1MxJA:fEgPbVBGUnK5bSbAo7XeYM

Malware Config

Extracted

Family

redline

Botnet

ww

C2

193.106.191.67:44400

Attributes
  • auth_value

    5a1b28ccd05953f5c3f99729c12427cc

Targets

    • Target

      789b7510c96619f42a720cdf6b4fc1991a1f93b4fb21acf97c7b7a845c3dc691

    • Size

      372KB

    • MD5

      5146962e84672a8341f83c69a2eb0911

    • SHA1

      2a472090567cf157381ae8f93d2eb7a7e2fa366e

    • SHA256

      789b7510c96619f42a720cdf6b4fc1991a1f93b4fb21acf97c7b7a845c3dc691

    • SHA512

      c66ec7144afc831bc95bc3a2ce6700b507771bca00fdf6e6bb7218d626c2dab5c5512242aa20fa9b282e1225090b4f462bb19ec2756ba04114f69dab22d85389

    • SSDEEP

      6144:fEgPbjXJRuDWPBGWZnKaSbSbT8oj3Xem1MxJA:fEgPbVBGUnK5bSbAo7XeYM

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks