General

  • Target

    facac3de496d9a60c7dc2aa80fbc6449f3e5e7510a10706c5d550233c92246e6

  • Size

    432KB

  • Sample

    241105-3j1g2stncq

  • MD5

    98f5781865c921dbc46f86a56468c036

  • SHA1

    7d79d4f30ece40d524531e95f07187db3e2810b2

  • SHA256

    facac3de496d9a60c7dc2aa80fbc6449f3e5e7510a10706c5d550233c92246e6

  • SHA512

    d63160cd1f825a72e9dec8c6e459d775a69f5add28192d0d08779f1fd9a4dd4ea0cb59e5b9b93f07f1f6efbdd101714b729c1964280de1d9ff0e922d04d38bba

  • SSDEEP

    6144:yGO9Zbg+pdyt8LlZuPpTOl2eV7pw5fq22bM0harV83KpzZWK3g2tF0:VO91g+pdytWZucV2E3harS3KpMK3g2T

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      facac3de496d9a60c7dc2aa80fbc6449f3e5e7510a10706c5d550233c92246e6

    • Size

      432KB

    • MD5

      98f5781865c921dbc46f86a56468c036

    • SHA1

      7d79d4f30ece40d524531e95f07187db3e2810b2

    • SHA256

      facac3de496d9a60c7dc2aa80fbc6449f3e5e7510a10706c5d550233c92246e6

    • SHA512

      d63160cd1f825a72e9dec8c6e459d775a69f5add28192d0d08779f1fd9a4dd4ea0cb59e5b9b93f07f1f6efbdd101714b729c1964280de1d9ff0e922d04d38bba

    • SSDEEP

      6144:yGO9Zbg+pdyt8LlZuPpTOl2eV7pw5fq22bM0harV83KpzZWK3g2tF0:VO91g+pdytWZucV2E3harS3KpMK3g2T

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks