General

  • Target

    96b44113a6b5f58cea492048c2410a15e1b65642cca22f2526439cf13fe0eaffN

  • Size

    175KB

  • Sample

    241112-qas1dswnfp

  • MD5

    924874d8e72b5552d5e26bed95d59800

  • SHA1

    1b687f7f4968a17c082b4ef51c274705090d81a9

  • SHA256

    96b44113a6b5f58cea492048c2410a15e1b65642cca22f2526439cf13fe0eaff

  • SHA512

    7154642183222154d8a5d65e9329a8ca75f07617dc0cdfa41e5fbeeaab6e6f03f0787013328509bdb19b09304807c99c3cab4824344ad920eaa9d5f4c5a120a2

  • SSDEEP

    3072:4xqZWZRanU2n0/Z62eJ5evJ9ih+PxNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jOm:mqZg/Z6XJIih

Malware Config

Extracted

Family

redline

Botnet

from

C2

176.113.115.145:4125

Attributes
  • auth_value

    8633e283485822a4a48f0a41d5397566

Targets

    • Target

      96b44113a6b5f58cea492048c2410a15e1b65642cca22f2526439cf13fe0eaffN

    • Size

      175KB

    • MD5

      924874d8e72b5552d5e26bed95d59800

    • SHA1

      1b687f7f4968a17c082b4ef51c274705090d81a9

    • SHA256

      96b44113a6b5f58cea492048c2410a15e1b65642cca22f2526439cf13fe0eaff

    • SHA512

      7154642183222154d8a5d65e9329a8ca75f07617dc0cdfa41e5fbeeaab6e6f03f0787013328509bdb19b09304807c99c3cab4824344ad920eaa9d5f4c5a120a2

    • SSDEEP

      3072:4xqZWZRanU2n0/Z62eJ5evJ9ih+PxNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jOm:mqZg/Z6XJIih

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks