General

  • Target

    7e457f8415ca2ac86ceadfbc8dc828b489f3fb23bd92b29d896dff81f76be016

  • Size

    423KB

  • Sample

    241104-1njc8azrbk

  • MD5

    1f932b286487d527b536216519a17489

  • SHA1

    ff3ed690fcd6e1a575e9615af1a2810fedd12bb9

  • SHA256

    7e457f8415ca2ac86ceadfbc8dc828b489f3fb23bd92b29d896dff81f76be016

  • SHA512

    c504810ea7b86a89dc3ef368ab4e8143fbeff33f92cca57ce1d4d668e209e56b6c7059cea471b0c8c076902d1fe89e34ea20eb42ccabe7287ee79ae136e373cb

  • SSDEEP

    6144:cMui5ObVmy+0LExccD4HOCL+qzPI1vCyuKkYi82Jzj6efYPV0p:GrLExjiOCyqzPI1vCyuKkBJzjL

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      7e457f8415ca2ac86ceadfbc8dc828b489f3fb23bd92b29d896dff81f76be016

    • Size

      423KB

    • MD5

      1f932b286487d527b536216519a17489

    • SHA1

      ff3ed690fcd6e1a575e9615af1a2810fedd12bb9

    • SHA256

      7e457f8415ca2ac86ceadfbc8dc828b489f3fb23bd92b29d896dff81f76be016

    • SHA512

      c504810ea7b86a89dc3ef368ab4e8143fbeff33f92cca57ce1d4d668e209e56b6c7059cea471b0c8c076902d1fe89e34ea20eb42ccabe7287ee79ae136e373cb

    • SSDEEP

      6144:cMui5ObVmy+0LExccD4HOCL+qzPI1vCyuKkYi82Jzj6efYPV0p:GrLExjiOCyqzPI1vCyuKkBJzjL

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks