General

  • Target

    5477372faf35961d99194d2b1044f4d5f50fef95980edad1bac3abc9ca148ca9

  • Size

    434KB

  • Sample

    241104-16lw3axqet

  • MD5

    a186500e77dc627ec017f58f3522c020

  • SHA1

    42fc23650ce620006809141a4e46b879487d6bfb

  • SHA256

    5477372faf35961d99194d2b1044f4d5f50fef95980edad1bac3abc9ca148ca9

  • SHA512

    9c550f569fc48df2cabdbc2057cdc593a63bf0ac8fbb2fd2c1d0bf65628c08a81a6ce2bb8a3f0df35403b61d449da657ffbec9104d66b85782ec2eb29d181b08

  • SSDEEP

    6144:IA/r6ksws1/whwnCWCDmV344pWNE20JvHoinidCso6URDkp6:J/rroDCWeW7sE20JPoinnso6UdK

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      5477372faf35961d99194d2b1044f4d5f50fef95980edad1bac3abc9ca148ca9

    • Size

      434KB

    • MD5

      a186500e77dc627ec017f58f3522c020

    • SHA1

      42fc23650ce620006809141a4e46b879487d6bfb

    • SHA256

      5477372faf35961d99194d2b1044f4d5f50fef95980edad1bac3abc9ca148ca9

    • SHA512

      9c550f569fc48df2cabdbc2057cdc593a63bf0ac8fbb2fd2c1d0bf65628c08a81a6ce2bb8a3f0df35403b61d449da657ffbec9104d66b85782ec2eb29d181b08

    • SSDEEP

      6144:IA/r6ksws1/whwnCWCDmV344pWNE20JvHoinidCso6URDkp6:J/rroDCWeW7sE20JPoinnso6UdK

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks