General

  • Target

    d86a4ac9ab81a74a638e659821fd1d76d9b240d2a4e9fd1dc25c387d356d9828.exe

  • Size

    304KB

  • Sample

    241214-qvgsvstlfx

  • MD5

    b5e07492b13633eacab4b4f57853b439

  • SHA1

    673f25d3b8ca435846dc04eabf6f5b412d9e7ed5

  • SHA256

    d86a4ac9ab81a74a638e659821fd1d76d9b240d2a4e9fd1dc25c387d356d9828

  • SHA512

    cc555116a570db59dfae1beb8587ecda1a25f520bc7aa45423a276a56ab89d21c84cb60df336dc114e388760798399451f1431a9e290b2b4a4d078164bdab999

  • SSDEEP

    3072:Lq6EgY6iArUj8186wPH5v0vaaOTH7VEpuTAjtASKo5cZqf7D349eqiOLibBO9:WqY6iMwPh3EpuTAJAC5cZqf7DIHL

Malware Config

Extracted

Family

redline

C2

38.180.72.54:42814

Targets

    • Target

      d86a4ac9ab81a74a638e659821fd1d76d9b240d2a4e9fd1dc25c387d356d9828.exe

    • Size

      304KB

    • MD5

      b5e07492b13633eacab4b4f57853b439

    • SHA1

      673f25d3b8ca435846dc04eabf6f5b412d9e7ed5

    • SHA256

      d86a4ac9ab81a74a638e659821fd1d76d9b240d2a4e9fd1dc25c387d356d9828

    • SHA512

      cc555116a570db59dfae1beb8587ecda1a25f520bc7aa45423a276a56ab89d21c84cb60df336dc114e388760798399451f1431a9e290b2b4a4d078164bdab999

    • SSDEEP

      3072:Lq6EgY6iArUj8186wPH5v0vaaOTH7VEpuTAjtASKo5cZqf7D349eqiOLibBO9:WqY6iMwPh3EpuTAJAC5cZqf7DIHL

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks