General

  • Target

    f68dd3eb1065fcf490632755fff828eca4b6359532ea3c60c8860f2567d451c1

  • Size

    423KB

  • Sample

    241030-1vn72s1jd1

  • MD5

    de25aef0ef025fe56c73e819dacbe155

  • SHA1

    c82d9943e839ad8e1e388c05902ed8ed352ac79a

  • SHA256

    f68dd3eb1065fcf490632755fff828eca4b6359532ea3c60c8860f2567d451c1

  • SHA512

    271e05fc58a4220742e442d1ae9118d9eee23e8310eefff958a8dcbdaccf65c818bdb4f48dfad7a5476b7e28f641d1a91aa47ebadabffdd1690fcbd9559f9229

  • SSDEEP

    6144:lF0QwcHpDxNC/vcfL4r/7Rvyx2BOxZWpWmYgwzOdrePY5hfm:lG0xEiErD1YNxZWpWmYwdreP5

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      f68dd3eb1065fcf490632755fff828eca4b6359532ea3c60c8860f2567d451c1

    • Size

      423KB

    • MD5

      de25aef0ef025fe56c73e819dacbe155

    • SHA1

      c82d9943e839ad8e1e388c05902ed8ed352ac79a

    • SHA256

      f68dd3eb1065fcf490632755fff828eca4b6359532ea3c60c8860f2567d451c1

    • SHA512

      271e05fc58a4220742e442d1ae9118d9eee23e8310eefff958a8dcbdaccf65c818bdb4f48dfad7a5476b7e28f641d1a91aa47ebadabffdd1690fcbd9559f9229

    • SSDEEP

      6144:lF0QwcHpDxNC/vcfL4r/7Rvyx2BOxZWpWmYgwzOdrePY5hfm:lG0xEiErD1YNxZWpWmYwdreP5

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks