General

  • Target

    452e194d422cd7c3d93f4730c429dffbeda63e37297fdbf28f999bd12832238e.exe

  • Size

    175KB

  • Sample

    241113-rf5rtataqd

  • MD5

    d76c20392e352aa40fa7dd68a514986e

  • SHA1

    013bc8760be75ddf164dbdaf039fdaebd52d8dd9

  • SHA256

    452e194d422cd7c3d93f4730c429dffbeda63e37297fdbf28f999bd12832238e

  • SHA512

    27efeb4b87a8e3ea7f464721dcf24e7cc4bb64d0eb68ac8d5e9df71cff6716d477620c8fe86736b1318275f89190e632658028941fa5492b915d142731944014

  • SSDEEP

    3072:6xqZWFFa7E6T8v1YFD8+e/5N8h9v7xNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jo:oqZcviFIB8h5j

Malware Config

Extracted

Family

redline

Botnet

zaza

C2

176.113.115.145:4125

Attributes
  • auth_value

    48bf44c663fe3c1035fb4dd0b91fde5d

Targets

    • Target

      452e194d422cd7c3d93f4730c429dffbeda63e37297fdbf28f999bd12832238e.exe

    • Size

      175KB

    • MD5

      d76c20392e352aa40fa7dd68a514986e

    • SHA1

      013bc8760be75ddf164dbdaf039fdaebd52d8dd9

    • SHA256

      452e194d422cd7c3d93f4730c429dffbeda63e37297fdbf28f999bd12832238e

    • SHA512

      27efeb4b87a8e3ea7f464721dcf24e7cc4bb64d0eb68ac8d5e9df71cff6716d477620c8fe86736b1318275f89190e632658028941fa5492b915d142731944014

    • SSDEEP

      3072:6xqZWFFa7E6T8v1YFD8+e/5N8h9v7xNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jo:oqZcviFIB8h5j

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks