General

  • Target

    9506e3ee109e541f1cb608365b35c13e39ed2e3e74976067df91484db555e76d

  • Size

    308KB

  • Sample

    241111-gvm57sxqcl

  • MD5

    6a7a15101fa9ef44f79b6b8574067c33

  • SHA1

    0fcc5ed689e9602bea68a6eb381f73c2f0b0b361

  • SHA256

    9506e3ee109e541f1cb608365b35c13e39ed2e3e74976067df91484db555e76d

  • SHA512

    f0088e098ad32d1a51bd81d1b63a4e26e148010a13e55ecb1b8f5fc7e093ddc59e6d9635e0dd246c76c19cd0b2f9031e14e4d0005ede0ab6a0afb0b824b9996c

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      9506e3ee109e541f1cb608365b35c13e39ed2e3e74976067df91484db555e76d

    • Size

      308KB

    • MD5

      6a7a15101fa9ef44f79b6b8574067c33

    • SHA1

      0fcc5ed689e9602bea68a6eb381f73c2f0b0b361

    • SHA256

      9506e3ee109e541f1cb608365b35c13e39ed2e3e74976067df91484db555e76d

    • SHA512

      f0088e098ad32d1a51bd81d1b63a4e26e148010a13e55ecb1b8f5fc7e093ddc59e6d9635e0dd246c76c19cd0b2f9031e14e4d0005ede0ab6a0afb0b824b9996c

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks