General

  • Target

    JaffaCakes118_c93af8d94c03adaf209946a1d98e54620a9392199ff677fc32a3c0e32b9e70ce

  • Size

    930.0MB

  • Sample

    241224-r3v6wszlaw

  • MD5

    3ad9cd498f060013a18c40a8cad0d445

  • SHA1

    969aaa9e855d9340460f25ece9ffa6bd3864608a

  • SHA256

    c93af8d94c03adaf209946a1d98e54620a9392199ff677fc32a3c0e32b9e70ce

  • SHA512

    6ee4c67fe6a76d5bb20d08afb064ee266649b3213332b83943b491024f8fc86f73b9edd1eb29cd347afa6c030a0ee08a07a916eee347ad69755120e996cc3355

  • SSDEEP

    25165824:Cnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnf:Cnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnf

Malware Config

Extracted

Family

redline

Botnet

@RipnDick

C2

94.142.138.4:80

Attributes
  • auth_value

    83d99dc1c3407c6d90a5ae13a041150f

Targets

    • Target

      JaffaCakes118_c93af8d94c03adaf209946a1d98e54620a9392199ff677fc32a3c0e32b9e70ce

    • Size

      930.0MB

    • MD5

      3ad9cd498f060013a18c40a8cad0d445

    • SHA1

      969aaa9e855d9340460f25ece9ffa6bd3864608a

    • SHA256

      c93af8d94c03adaf209946a1d98e54620a9392199ff677fc32a3c0e32b9e70ce

    • SHA512

      6ee4c67fe6a76d5bb20d08afb064ee266649b3213332b83943b491024f8fc86f73b9edd1eb29cd347afa6c030a0ee08a07a916eee347ad69755120e996cc3355

    • SSDEEP

      25165824:Cnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnf:Cnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnf

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks