General

  • Target

    51d80fbe9568c6da2f151cbe3e3f513f

  • Size

    310KB

  • Sample

    241111-gve5lavdjf

  • MD5

    51d80fbe9568c6da2f151cbe3e3f513f

  • SHA1

    4b7f60516558152b15ef02d009b5ecc85423359b

  • SHA256

    9b765f17823d3ec658e71463f421e497e043e2ff099d17d4c40d3296eb007e91

  • SHA512

    9fb2f477b9a714d53e5af5736088c83115ed841fd37d304064555a5823c5c639d668a1a4696555a70e7317b5a39e9bc2f57911127bf2935b087147a2442e599c

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      51d80fbe9568c6da2f151cbe3e3f513f

    • Size

      310KB

    • MD5

      51d80fbe9568c6da2f151cbe3e3f513f

    • SHA1

      4b7f60516558152b15ef02d009b5ecc85423359b

    • SHA256

      9b765f17823d3ec658e71463f421e497e043e2ff099d17d4c40d3296eb007e91

    • SHA512

      9fb2f477b9a714d53e5af5736088c83115ed841fd37d304064555a5823c5c639d668a1a4696555a70e7317b5a39e9bc2f57911127bf2935b087147a2442e599c

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks