General

  • Target

    47785210719696a913cce325fc8a59ddfb74f0b65c6ff1bd94ea5453c044eda1

  • Size

    373KB

  • Sample

    241111-hgcb8aykcm

  • MD5

    2f765b33b7907bf5b3cac91ad050e203

  • SHA1

    08563b5327f07374725b3f522d37e6bebeea6d22

  • SHA256

    47785210719696a913cce325fc8a59ddfb74f0b65c6ff1bd94ea5453c044eda1

  • SHA512

    4d51ff43aa3fcf644b8c277e9ae5a1f70925ea7551f5614eb3e686074c8fbdbf85586dac215f5d1d1e818a44cb594085b5c55bd867fedb3e1d6c7f572d0e2f59

  • SSDEEP

    3072:jD8ZcuGWzT1YZOJbPxtLw4O+RiVzBnSoOVdliIdbpeEjTCTS76M9p1ouYJ9Ceds9:6cuGuYMLRiyo8dXzrWT6B9jM9lz/X2

Malware Config

Extracted

Family

redline

Botnet

ww

C2

193.106.191.67:44400

Attributes
  • auth_value

    5a1b28ccd05953f5c3f99729c12427cc

Targets

    • Target

      47785210719696a913cce325fc8a59ddfb74f0b65c6ff1bd94ea5453c044eda1

    • Size

      373KB

    • MD5

      2f765b33b7907bf5b3cac91ad050e203

    • SHA1

      08563b5327f07374725b3f522d37e6bebeea6d22

    • SHA256

      47785210719696a913cce325fc8a59ddfb74f0b65c6ff1bd94ea5453c044eda1

    • SHA512

      4d51ff43aa3fcf644b8c277e9ae5a1f70925ea7551f5614eb3e686074c8fbdbf85586dac215f5d1d1e818a44cb594085b5c55bd867fedb3e1d6c7f572d0e2f59

    • SSDEEP

      3072:jD8ZcuGWzT1YZOJbPxtLw4O+RiVzBnSoOVdliIdbpeEjTCTS76M9p1ouYJ9Ceds9:6cuGuYMLRiyo8dXzrWT6B9jM9lz/X2

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks