General

  • Target

    c40adad75223f3c8fa4df023d4e7c9821a816df8cf484eecb5976beb0137b0e9.exe

  • Size

    169KB

  • Sample

    241113-zrfk3azajm

  • MD5

    785d13da1ff842967a8587558fae58f8

  • SHA1

    c06442a2478b7293c298d34721eb470e074aa993

  • SHA256

    c40adad75223f3c8fa4df023d4e7c9821a816df8cf484eecb5976beb0137b0e9

  • SHA512

    e88e9e29b3be97c8c9f48c30cf15b24bf95fee73420e2cbb78e576f0f03bb25ae9a55ab4729306b1502efc03d05d2e679014b9ddf925a77702a504c324b09c49

  • SSDEEP

    1536:6SC0Ji8gqlVZRGWGl4FrGZ/StgThBzyWToTGqVUbuU3YzCjj+1983wYki8e8h14:6U90lLZV3LtqVsvECjj+19c8e8h14

Malware Config

Extracted

Family

redline

Botnet

dork

C2

185.161.248.73:4164

Attributes
  • auth_value

    e81be7d6cfb453cc812e1b4890eeadad

Targets

    • Target

      c40adad75223f3c8fa4df023d4e7c9821a816df8cf484eecb5976beb0137b0e9.exe

    • Size

      169KB

    • MD5

      785d13da1ff842967a8587558fae58f8

    • SHA1

      c06442a2478b7293c298d34721eb470e074aa993

    • SHA256

      c40adad75223f3c8fa4df023d4e7c9821a816df8cf484eecb5976beb0137b0e9

    • SHA512

      e88e9e29b3be97c8c9f48c30cf15b24bf95fee73420e2cbb78e576f0f03bb25ae9a55ab4729306b1502efc03d05d2e679014b9ddf925a77702a504c324b09c49

    • SSDEEP

      1536:6SC0Ji8gqlVZRGWGl4FrGZ/StgThBzyWToTGqVUbuU3YzCjj+1983wYki8e8h14:6U90lLZV3LtqVsvECjj+19c8e8h14

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks