General

  • Target

    859f72a60966864a73ca36a119570328d5a769f3e6d8fa11f7b11e0b26fd6f6d

  • Size

    283KB

  • Sample

    241112-asfj1stlgl

  • MD5

    a9d4a2a8ceca8ebd749f57fa5d042321

  • SHA1

    faf45b9850d10403ddba30e5eb0c00a4c8c88577

  • SHA256

    859f72a60966864a73ca36a119570328d5a769f3e6d8fa11f7b11e0b26fd6f6d

  • SHA512

    4a3fea68ae7c65ec9ee8f357a386768c9d82a69a77318751720ad9bdbbd278513a485f3b7cbe61b44ddd5a5c30c961266fbd077fb291dd914ddc5424980f516d

  • SSDEEP

    6144:MywfJlo7uQSAQsRgEpv9EBvlCH5DEWG2ycfm:MywfJK7uQLQ2fpvyBvlCH5Dl+

Malware Config

Extracted

Family

redline

Botnet

mango

C2

193.233.20.28:4125

Attributes
  • auth_value

    ecf79d7f5227d998a3501c972d915d23

Targets

    • Target

      859f72a60966864a73ca36a119570328d5a769f3e6d8fa11f7b11e0b26fd6f6d

    • Size

      283KB

    • MD5

      a9d4a2a8ceca8ebd749f57fa5d042321

    • SHA1

      faf45b9850d10403ddba30e5eb0c00a4c8c88577

    • SHA256

      859f72a60966864a73ca36a119570328d5a769f3e6d8fa11f7b11e0b26fd6f6d

    • SHA512

      4a3fea68ae7c65ec9ee8f357a386768c9d82a69a77318751720ad9bdbbd278513a485f3b7cbe61b44ddd5a5c30c961266fbd077fb291dd914ddc5424980f516d

    • SSDEEP

      6144:MywfJlo7uQSAQsRgEpv9EBvlCH5DEWG2ycfm:MywfJK7uQLQ2fpvyBvlCH5Dl+

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks