General

  • Target

    165d4f8167990700cc15d9d25a40b3d4

  • Size

    373KB

  • Sample

    241111-hr38pawajg

  • MD5

    165d4f8167990700cc15d9d25a40b3d4

  • SHA1

    924e1ad28d04fa95e634c710089bb6cf40e02638

  • SHA256

    2b5d90b1d9f30a86eba19212b4ea1ee63ea73c8f9891349904aab1bb0863a479

  • SHA512

    15d09667c14111550f91d98af04139c56bc2295b1e5ecd5383715884930fa4890bbe15604d085121a4ec7bc1a5743457e809a9350c1b393d5dee17de3c5413b4

  • SSDEEP

    6144:iEgrpqiq25A+2qcdmQoOdDlI5lC4V0GuymF:iEgrps25zXOZqXE

Malware Config

Extracted

Family

redline

Botnet

ww

C2

193.106.191.67:44400

Attributes
  • auth_value

    5a1b28ccd05953f5c3f99729c12427cc

Targets

    • Target

      165d4f8167990700cc15d9d25a40b3d4

    • Size

      373KB

    • MD5

      165d4f8167990700cc15d9d25a40b3d4

    • SHA1

      924e1ad28d04fa95e634c710089bb6cf40e02638

    • SHA256

      2b5d90b1d9f30a86eba19212b4ea1ee63ea73c8f9891349904aab1bb0863a479

    • SHA512

      15d09667c14111550f91d98af04139c56bc2295b1e5ecd5383715884930fa4890bbe15604d085121a4ec7bc1a5743457e809a9350c1b393d5dee17de3c5413b4

    • SSDEEP

      6144:iEgrpqiq25A+2qcdmQoOdDlI5lC4V0GuymF:iEgrps25zXOZqXE

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks