General

  • Target

    7f33147af02a940babaee4dc7ec556b4fd1b03886205f04de2a757e737571e14

  • Size

    287KB

  • Sample

    241105-1pplmayhle

  • MD5

    510db9cf624a8dedce0bb0f74f26546d

  • SHA1

    67cf727644304ba2e09caaa704acc75348e7fa89

  • SHA256

    7f33147af02a940babaee4dc7ec556b4fd1b03886205f04de2a757e737571e14

  • SHA512

    68c8718e6986ac127471484045e23b0d4ddfbe7c98262f6134ac87e72bf421bdbdb9295c9f88b7ad5dfa5266aa48cc7349f33abcb6996e8aeef96c24f477ae2c

  • SSDEEP

    6144:Z8qL1ObqYbAiSCTmxTPj/0rtsvBS+5pTuzbgwuko6OB:mqcbquAGQTPgrtscURunnro6O

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      7f33147af02a940babaee4dc7ec556b4fd1b03886205f04de2a757e737571e14

    • Size

      287KB

    • MD5

      510db9cf624a8dedce0bb0f74f26546d

    • SHA1

      67cf727644304ba2e09caaa704acc75348e7fa89

    • SHA256

      7f33147af02a940babaee4dc7ec556b4fd1b03886205f04de2a757e737571e14

    • SHA512

      68c8718e6986ac127471484045e23b0d4ddfbe7c98262f6134ac87e72bf421bdbdb9295c9f88b7ad5dfa5266aa48cc7349f33abcb6996e8aeef96c24f477ae2c

    • SSDEEP

      6144:Z8qL1ObqYbAiSCTmxTPj/0rtsvBS+5pTuzbgwuko6OB:mqcbquAGQTPgrtscURunnro6O

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks