General

  • Target

    83f07c678eac5c6ba0cb4323153e69b06d3a6038

  • Size

    373KB

  • Sample

    241111-hgrf5sykdm

  • MD5

    11a29e64ba251fa1b2c639ff4c95b4c6

  • SHA1

    83f07c678eac5c6ba0cb4323153e69b06d3a6038

  • SHA256

    f340c4b84014b78733838a1ef6205e283d399bc1ed1179ea8abb0fc497bc234b

  • SHA512

    a86f8c63e52f17585a0c3f9200918619b5441033a3821785b0846a79023dce4fc6052fc1f513b12e0c0ebe3ba68957b5c9941f46e9931765afe8f4ee5ce1d1c7

  • SSDEEP

    3072:4ibEgkdGKxWR2VbM9eomnk9pi+D/OmlZI5Mf1gcE71zoVE0a7LgHjO5WsqnZg2:JEgucR2Z+eK9Q+D/XI5V1BKjB7nx

Malware Config

Extracted

Family

redline

Botnet

ww

C2

193.106.191.67:44400

Attributes
  • auth_value

    5a1b28ccd05953f5c3f99729c12427cc

Targets

    • Target

      83f07c678eac5c6ba0cb4323153e69b06d3a6038

    • Size

      373KB

    • MD5

      11a29e64ba251fa1b2c639ff4c95b4c6

    • SHA1

      83f07c678eac5c6ba0cb4323153e69b06d3a6038

    • SHA256

      f340c4b84014b78733838a1ef6205e283d399bc1ed1179ea8abb0fc497bc234b

    • SHA512

      a86f8c63e52f17585a0c3f9200918619b5441033a3821785b0846a79023dce4fc6052fc1f513b12e0c0ebe3ba68957b5c9941f46e9931765afe8f4ee5ce1d1c7

    • SSDEEP

      3072:4ibEgkdGKxWR2VbM9eomnk9pi+D/OmlZI5Mf1gcE71zoVE0a7LgHjO5WsqnZg2:JEgucR2Z+eK9Q+D/XI5V1BKjB7nx

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks