General

  • Target

    7d2951b95dbcaad1a6a2fd978be464beb715eec7e3508bd9f596b1f6e5f6cab1

  • Size

    438KB

  • Sample

    220121-fxr2hadgg5

  • MD5

    be889fb9b121c29b3d2f9bc8cff0e162

  • SHA1

    ac0dd5655332da6cb33b13b29f055020481c173f

  • SHA256

    7d2951b95dbcaad1a6a2fd978be464beb715eec7e3508bd9f596b1f6e5f6cab1

  • SHA512

    2f00f596bff683af757e6b2ae991e2f5a152df12cc00123eadbee442ef431af9796f37c9f1c8fe4e5ded4f56fdc53a73692fc16be0ae7f74fd5032a1211cb4f3

Malware Config

Extracted

Family

redline

Botnet

NONAME

C2

45.9.20.111:1355

Targets

    • Target

      7d2951b95dbcaad1a6a2fd978be464beb715eec7e3508bd9f596b1f6e5f6cab1

    • Size

      438KB

    • MD5

      be889fb9b121c29b3d2f9bc8cff0e162

    • SHA1

      ac0dd5655332da6cb33b13b29f055020481c173f

    • SHA256

      7d2951b95dbcaad1a6a2fd978be464beb715eec7e3508bd9f596b1f6e5f6cab1

    • SHA512

      2f00f596bff683af757e6b2ae991e2f5a152df12cc00123eadbee442ef431af9796f37c9f1c8fe4e5ded4f56fdc53a73692fc16be0ae7f74fd5032a1211cb4f3

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine Payload

MITRE ATT&CK Matrix

Tasks