General

  • Target

    def8ed602a588243da035f73c46c5cbb46770f1d54134d518a9f373db5ad99fc.exe

  • Size

    175KB

  • Sample

    241113-q79dmstbrj

  • MD5

    f72ab7220591be62c2476beac41ae7ae

  • SHA1

    a83d1534b42b33c33e8ed864e3b0b986e7eae366

  • SHA256

    def8ed602a588243da035f73c46c5cbb46770f1d54134d518a9f373db5ad99fc

  • SHA512

    a13385fd97ee83133ce50f88ed100bf295e4fd7a953e5b277710807aa0428d3106d7bff878040796c5b9f98af5f1426658b5c7f8097528f2ea6e6e1bc6f1d071

  • SSDEEP

    3072:VxqZWn7aNQYF8ZueD59IhmHxNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jOuw+cac:fqZuZZIhc

Malware Config

Extracted

Family

redline

Botnet

muse

C2

176.113.115.145:4125

Attributes
  • auth_value

    b91988a63a24940038d9262827a5320c

Targets

    • Target

      def8ed602a588243da035f73c46c5cbb46770f1d54134d518a9f373db5ad99fc.exe

    • Size

      175KB

    • MD5

      f72ab7220591be62c2476beac41ae7ae

    • SHA1

      a83d1534b42b33c33e8ed864e3b0b986e7eae366

    • SHA256

      def8ed602a588243da035f73c46c5cbb46770f1d54134d518a9f373db5ad99fc

    • SHA512

      a13385fd97ee83133ce50f88ed100bf295e4fd7a953e5b277710807aa0428d3106d7bff878040796c5b9f98af5f1426658b5c7f8097528f2ea6e6e1bc6f1d071

    • SSDEEP

      3072:VxqZWn7aNQYF8ZueD59IhmHxNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jOuw+cac:fqZuZZIhc

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks