General

  • Target

    1c0c662146236eedcaa468a205bf1969795140213e401d28e98044b3dc431cebN

  • Size

    311KB

  • Sample

    241113-zy3deayhpc

  • MD5

    15db92ba13755568330c2f755239fd50

  • SHA1

    50af4d6b3e184200c99083948d1949b1efae724f

  • SHA256

    1c0c662146236eedcaa468a205bf1969795140213e401d28e98044b3dc431ceb

  • SHA512

    d713f4076461f9a094468d27782bd9011aaecc6040359266ee1579fa5e8f606cc845f9aa4e91b534f2e8bff9b67ec6d53a7d702a40fde93cc8f6fa74a21dd6fa

  • SSDEEP

    6144:9kgAYnCO/SuhHtNfhFwErILIQv91GW/6vS4pHT:9hCOX7ZHe91GW/6bz

Malware Config

Extracted

Family

redline

Botnet

rosn

C2

176.113.115.145:4125

Attributes
  • auth_value

    050a19e1db4d0024b0f23b37dcf961f4

Targets

    • Target

      1c0c662146236eedcaa468a205bf1969795140213e401d28e98044b3dc431cebN

    • Size

      311KB

    • MD5

      15db92ba13755568330c2f755239fd50

    • SHA1

      50af4d6b3e184200c99083948d1949b1efae724f

    • SHA256

      1c0c662146236eedcaa468a205bf1969795140213e401d28e98044b3dc431ceb

    • SHA512

      d713f4076461f9a094468d27782bd9011aaecc6040359266ee1579fa5e8f606cc845f9aa4e91b534f2e8bff9b67ec6d53a7d702a40fde93cc8f6fa74a21dd6fa

    • SSDEEP

      6144:9kgAYnCO/SuhHtNfhFwErILIQv91GW/6vS4pHT:9hCOX7ZHe91GW/6bz

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks