General

  • Target

    81588b560c79e3aa31953737dab93eebf02adba55dee8fd57d9d0a1728f6d674

  • Size

    319KB

  • Sample

    241111-hfy5lavdlm

  • MD5

    52788000b5a329256cf988259f6141ac

  • SHA1

    8e2ccc88dd32a2db1985a2a3a7409574e91ed864

  • SHA256

    81588b560c79e3aa31953737dab93eebf02adba55dee8fd57d9d0a1728f6d674

  • SHA512

    3884141d822bf2827eb132614b62dd6ff3c21203e880019c14862085fb038a86aca4eda8822c9671a778a7b1f2e6d84da61bbd3da7e1e8093e7b820ea339cb77

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      81588b560c79e3aa31953737dab93eebf02adba55dee8fd57d9d0a1728f6d674

    • Size

      319KB

    • MD5

      52788000b5a329256cf988259f6141ac

    • SHA1

      8e2ccc88dd32a2db1985a2a3a7409574e91ed864

    • SHA256

      81588b560c79e3aa31953737dab93eebf02adba55dee8fd57d9d0a1728f6d674

    • SHA512

      3884141d822bf2827eb132614b62dd6ff3c21203e880019c14862085fb038a86aca4eda8822c9671a778a7b1f2e6d84da61bbd3da7e1e8093e7b820ea339cb77

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks