General

  • Target

    e415f57dff983a2e8cbd5297dab8010eb75aabb77b5741aeda948370f6efbfab.exe

  • Size

    428KB

  • Sample

    241206-e4xd5awmck

  • MD5

    854fcf30dadaae7d8b78489cb5262a40

  • SHA1

    33a335e6b01f64aa03e4b8d0a72a86e1a9ee900f

  • SHA256

    e415f57dff983a2e8cbd5297dab8010eb75aabb77b5741aeda948370f6efbfab

  • SHA512

    2eb42aaee082fb7f23654df36c62d8c09997baa33e422b60bfd99615d61d27b60efc15ed4cfc3c5cb681769df64fee7cc405bd26471b26690ee8397730845299

  • SSDEEP

    6144:XaTvM7ShqOEgFmXn594tHllr4vpZPHouzbgwuO0RFZKnlVMwVfG8:XaTE7fKFE5WtH/4vPIunnwRFZ4lH

Malware Config

Extracted

Family

redline

C2

185.215.113.28:4819

Attributes
  • auth_value

    e99caef0569c1428b87dce9189c994a4

Targets

    • Target

      e415f57dff983a2e8cbd5297dab8010eb75aabb77b5741aeda948370f6efbfab.exe

    • Size

      428KB

    • MD5

      854fcf30dadaae7d8b78489cb5262a40

    • SHA1

      33a335e6b01f64aa03e4b8d0a72a86e1a9ee900f

    • SHA256

      e415f57dff983a2e8cbd5297dab8010eb75aabb77b5741aeda948370f6efbfab

    • SHA512

      2eb42aaee082fb7f23654df36c62d8c09997baa33e422b60bfd99615d61d27b60efc15ed4cfc3c5cb681769df64fee7cc405bd26471b26690ee8397730845299

    • SSDEEP

      6144:XaTvM7ShqOEgFmXn594tHllr4vpZPHouzbgwuO0RFZKnlVMwVfG8:XaTE7fKFE5WtH/4vPIunnwRFZ4lH

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks