General

  • Target

    85f2f18682ef9d48d30932a6641994a8

  • Size

    377KB

  • Sample

    241111-hfk8qsvdkp

  • MD5

    85f2f18682ef9d48d30932a6641994a8

  • SHA1

    f29d891278a61c9da56c2e136e73728e9e67946f

  • SHA256

    94055d5d28a31752a72fdbd82a762bcda03177e9bc323274f0a9d9fb6d4c779f

  • SHA512

    d2658bb3c39e2e98cb79f9792d9d95ba0e67e912cacdb95b07292c656efa58d3a6243014d9adc4ef3979d966a25b5005a79e901bc2190e841f9c2fda6a1279b6

  • SSDEEP

    6144:J2LOJWV449KZCBP0cQyl+gNrFmKMdgpVfzHIsH2RHQQXL8OrZSCdF:J2KJUJ96CBD+q5mddgpVzxWRHQQXxFZ

Malware Config

Extracted

Family

redline

Botnet

iNerinoEU

C2

193.233.48.58:38989

Attributes
  • auth_value

    4536d7478dc495213e425f08d6e8e496

Targets

    • Target

      85f2f18682ef9d48d30932a6641994a8

    • Size

      377KB

    • MD5

      85f2f18682ef9d48d30932a6641994a8

    • SHA1

      f29d891278a61c9da56c2e136e73728e9e67946f

    • SHA256

      94055d5d28a31752a72fdbd82a762bcda03177e9bc323274f0a9d9fb6d4c779f

    • SHA512

      d2658bb3c39e2e98cb79f9792d9d95ba0e67e912cacdb95b07292c656efa58d3a6243014d9adc4ef3979d966a25b5005a79e901bc2190e841f9c2fda6a1279b6

    • SSDEEP

      6144:J2LOJWV449KZCBP0cQyl+gNrFmKMdgpVfzHIsH2RHQQXL8OrZSCdF:J2KJUJ96CBD+q5mddgpVzxWRHQQXxFZ

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks