General

  • Target

    4912148d5763e83a19cdce7724992532cd636680

  • Size

    373KB

  • Sample

    241111-hknjnaykhk

  • MD5

    4d80baf6ec019ad2b615d1ea4ee1336a

  • SHA1

    4912148d5763e83a19cdce7724992532cd636680

  • SHA256

    b04fa9f919334ddd03f873e7f1e6184501582aa244e3211da3f50a19eebc5523

  • SHA512

    2189ebdfcc2c836610d6fafedadd95dac73bf6422f335454e76c620f95af08c6300c22b629b39d76981751e7de3da8d00865252afb97b2dd7a0de9b874140211

  • SSDEEP

    3072:jVhrEgErb0hccROgaRK4lc2Zk+ra+0lEgEVYn8b42lLhl1TLeWCdwW5e8f1pN2B:LEgGgNc9pTmlE8MBLhuWHi1p0

Malware Config

Extracted

Family

redline

Botnet

ww

C2

193.106.191.67:44400

Attributes
  • auth_value

    5a1b28ccd05953f5c3f99729c12427cc

Targets

    • Target

      4912148d5763e83a19cdce7724992532cd636680

    • Size

      373KB

    • MD5

      4d80baf6ec019ad2b615d1ea4ee1336a

    • SHA1

      4912148d5763e83a19cdce7724992532cd636680

    • SHA256

      b04fa9f919334ddd03f873e7f1e6184501582aa244e3211da3f50a19eebc5523

    • SHA512

      2189ebdfcc2c836610d6fafedadd95dac73bf6422f335454e76c620f95af08c6300c22b629b39d76981751e7de3da8d00865252afb97b2dd7a0de9b874140211

    • SSDEEP

      3072:jVhrEgErb0hccROgaRK4lc2Zk+ra+0lEgEVYn8b42lLhl1TLeWCdwW5e8f1pN2B:LEgGgNc9pTmlE8MBLhuWHi1p0

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks