General

  • Target

    106ac8c2d9a50a8c0ac65081a11f9ff01998013438cf741c5bc11d0fb2269d26

  • Size

    434KB

  • Sample

    241104-1zbshsybkd

  • MD5

    8c3f692f4993a89ad628f82d7e309cc4

  • SHA1

    7669653be52d35c69ac367d78f432745ab72f76a

  • SHA256

    106ac8c2d9a50a8c0ac65081a11f9ff01998013438cf741c5bc11d0fb2269d26

  • SHA512

    c90f91ee487206634f7cd6e35f8164fdb1df05947bef227d052c375e15077a24543d890333fc7959ef23a5835704e6ca9ea5a8074d22a82dd142dbbe7a6218aa

  • SSDEEP

    12288:Yny46AqB/g47hhVOlv/L1wS3KpiT8nokS:1jR/9VDOlv/GxiTpkS

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      106ac8c2d9a50a8c0ac65081a11f9ff01998013438cf741c5bc11d0fb2269d26

    • Size

      434KB

    • MD5

      8c3f692f4993a89ad628f82d7e309cc4

    • SHA1

      7669653be52d35c69ac367d78f432745ab72f76a

    • SHA256

      106ac8c2d9a50a8c0ac65081a11f9ff01998013438cf741c5bc11d0fb2269d26

    • SHA512

      c90f91ee487206634f7cd6e35f8164fdb1df05947bef227d052c375e15077a24543d890333fc7959ef23a5835704e6ca9ea5a8074d22a82dd142dbbe7a6218aa

    • SSDEEP

      12288:Yny46AqB/g47hhVOlv/L1wS3KpiT8nokS:1jR/9VDOlv/GxiTpkS

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks