General

  • Target

    462ac435e4f4d38d3abf271697b566f815f90a986b961ed7a209902b204a8246

  • Size

    434KB

  • Sample

    241104-xt2j7swbrr

  • MD5

    e14efce26b934b01d479a4ef55419317

  • SHA1

    3b8ae019f840a4b8df3383aeff225de1cecc2739

  • SHA256

    462ac435e4f4d38d3abf271697b566f815f90a986b961ed7a209902b204a8246

  • SHA512

    ce105f26af5a03a641d214928a9e70d12b77537f0413d4c61e8bcdfa84f3e5c6285925173078b4737b5388debefa59641cdc19ece29998549e9a19a679f86d59

  • SSDEEP

    6144:MJTpi7bxjww3MK4zPcMZ4fPHsjcm8wldunH7qorYiQI/Q+VK1I:+ihF3QPXZ8sjfBlduneorYU/Q+V

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      462ac435e4f4d38d3abf271697b566f815f90a986b961ed7a209902b204a8246

    • Size

      434KB

    • MD5

      e14efce26b934b01d479a4ef55419317

    • SHA1

      3b8ae019f840a4b8df3383aeff225de1cecc2739

    • SHA256

      462ac435e4f4d38d3abf271697b566f815f90a986b961ed7a209902b204a8246

    • SHA512

      ce105f26af5a03a641d214928a9e70d12b77537f0413d4c61e8bcdfa84f3e5c6285925173078b4737b5388debefa59641cdc19ece29998549e9a19a679f86d59

    • SSDEEP

      6144:MJTpi7bxjww3MK4zPcMZ4fPHsjcm8wldunH7qorYiQI/Q+VK1I:+ihF3QPXZ8sjfBlduneorYU/Q+V

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks