General

  • Target

    d19c233702b8fcaf33bce70ba53c39545a1e721de14c8a3b0b62024e0a313838.exe

  • Size

    357KB

  • Sample

    241113-yj7txaybnf

  • MD5

    9b3271e43a6e9b78d58f067ed3609e66

  • SHA1

    a0e12214ec4efa724dcdde033c690ce34a780d6a

  • SHA256

    d19c233702b8fcaf33bce70ba53c39545a1e721de14c8a3b0b62024e0a313838

  • SHA512

    13c8b1d9cd8b667ccee2d6effb2d8720e46bbe7d1927a5782c17614b46f7f7b5315e0de498ca0c1746e87234e81b5aa55080d3c2d564699db308f72610055166

  • SSDEEP

    6144:ZyrfCNX9lyWU1ZSjoTZOtKv0uaL96Z9hWdPLGk3op:0rfCNX94hN1Ot20dL96ZXWCk3op

Malware Config

Extracted

Family

redline

Botnet

down

C2

193.233.20.31:4125

Attributes
  • auth_value

    12c31a90c72f5efae8c053a0bd339381

Targets

    • Target

      d19c233702b8fcaf33bce70ba53c39545a1e721de14c8a3b0b62024e0a313838.exe

    • Size

      357KB

    • MD5

      9b3271e43a6e9b78d58f067ed3609e66

    • SHA1

      a0e12214ec4efa724dcdde033c690ce34a780d6a

    • SHA256

      d19c233702b8fcaf33bce70ba53c39545a1e721de14c8a3b0b62024e0a313838

    • SHA512

      13c8b1d9cd8b667ccee2d6effb2d8720e46bbe7d1927a5782c17614b46f7f7b5315e0de498ca0c1746e87234e81b5aa55080d3c2d564699db308f72610055166

    • SSDEEP

      6144:ZyrfCNX9lyWU1ZSjoTZOtKv0uaL96Z9hWdPLGk3op:0rfCNX94hN1Ot20dL96ZXWCk3op

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks