General

  • Target

    86c2ea9d110c08509971d1684977fdf9774fc52708bfaad35c3f89ac517ea701

  • Size

    373KB

  • Sample

    241111-he7qcavdjp

  • MD5

    86981b638ac977f0549bc55e61fb6732

  • SHA1

    2690eab6273f09bd4d63eb2d68f8691f152d476f

  • SHA256

    86c2ea9d110c08509971d1684977fdf9774fc52708bfaad35c3f89ac517ea701

  • SHA512

    57a93738c750eb63aeba8135f83a005b02e8cf9d698742155534a930dfa69e32a43ef4286c6d5af52373d0f9dbdfcf0f0d66ddd858960e72be9b11365f469aca

  • SSDEEP

    3072:HyZpbjjbCFkAMzeQlmfGHpbGN2Uro3ntvv7WoNPghCon2Hb9Nu7X5yJj8GtA5oly:kpbjQN2evfwB3xzWo1roRYx8epB+

Malware Config

Extracted

Family

redline

Botnet

ww

C2

193.106.191.67:44400

Attributes
  • auth_value

    5a1b28ccd05953f5c3f99729c12427cc

Targets

    • Target

      86c2ea9d110c08509971d1684977fdf9774fc52708bfaad35c3f89ac517ea701

    • Size

      373KB

    • MD5

      86981b638ac977f0549bc55e61fb6732

    • SHA1

      2690eab6273f09bd4d63eb2d68f8691f152d476f

    • SHA256

      86c2ea9d110c08509971d1684977fdf9774fc52708bfaad35c3f89ac517ea701

    • SHA512

      57a93738c750eb63aeba8135f83a005b02e8cf9d698742155534a930dfa69e32a43ef4286c6d5af52373d0f9dbdfcf0f0d66ddd858960e72be9b11365f469aca

    • SSDEEP

      3072:HyZpbjjbCFkAMzeQlmfGHpbGN2Uro3ntvv7WoNPghCon2Hb9Nu7X5yJj8GtA5oly:kpbjQN2evfwB3xzWo1roRYx8epB+

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks