General

  • Target

    b184e4b8b3f810550b0ae5bb58e68269af11a16ed3c3291fc403752b8593ea82

  • Size

    433KB

  • Sample

    241104-2rls7a1pgp

  • MD5

    7550d7fe6ddd1f214169656800d79011

  • SHA1

    1bff978b1195bfa912971c73c721614d7f4694c7

  • SHA256

    b184e4b8b3f810550b0ae5bb58e68269af11a16ed3c3291fc403752b8593ea82

  • SHA512

    b2a08a9abfe024b1e69eba80a9d32d1f3ea5fe2f75ab404a774d2cd65d16dbc27a8156ad347003130214bb8eecee0bdcf1177cbdb4d6a4a0ac419501a96ac75a

  • SSDEEP

    6144:FkedgevvvIm6t1uVWIad8Ko0aY2xxoNr/psbefV3uu1Hbs/rzte:2edKT/Iqow6oNr/psbet3uuts/rzE

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      b184e4b8b3f810550b0ae5bb58e68269af11a16ed3c3291fc403752b8593ea82

    • Size

      433KB

    • MD5

      7550d7fe6ddd1f214169656800d79011

    • SHA1

      1bff978b1195bfa912971c73c721614d7f4694c7

    • SHA256

      b184e4b8b3f810550b0ae5bb58e68269af11a16ed3c3291fc403752b8593ea82

    • SHA512

      b2a08a9abfe024b1e69eba80a9d32d1f3ea5fe2f75ab404a774d2cd65d16dbc27a8156ad347003130214bb8eecee0bdcf1177cbdb4d6a4a0ac419501a96ac75a

    • SSDEEP

      6144:FkedgevvvIm6t1uVWIad8Ko0aY2xxoNr/psbefV3uu1Hbs/rzte:2edKT/Iqow6oNr/psbet3uuts/rzE

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks