General

  • Target

    570d691f1eb716ec13410325f6dc71f4

  • Size

    311KB

  • Sample

    241111-hge34stpgz

  • MD5

    570d691f1eb716ec13410325f6dc71f4

  • SHA1

    09c3f83c911888c6e16d6e2a204e4d1e3c025c00

  • SHA256

    d3eb6c2de5f6db3fe7b235e3e9e628a6353823a087bd4d33af7fb3b397c569d0

  • SHA512

    cc24777f3f63b41e7dc307610fbce21048bc7983b8825831634d878587ae289cb97039cbbddcba3aadfd80141557cff160ec83e0e1b064edec8971b170d5ed14

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      570d691f1eb716ec13410325f6dc71f4

    • Size

      311KB

    • MD5

      570d691f1eb716ec13410325f6dc71f4

    • SHA1

      09c3f83c911888c6e16d6e2a204e4d1e3c025c00

    • SHA256

      d3eb6c2de5f6db3fe7b235e3e9e628a6353823a087bd4d33af7fb3b397c569d0

    • SHA512

      cc24777f3f63b41e7dc307610fbce21048bc7983b8825831634d878587ae289cb97039cbbddcba3aadfd80141557cff160ec83e0e1b064edec8971b170d5ed14

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks