General

  • Target

    f0893219b2b0da474437b9182dd3bbb02397e455f8fcf6c6fb694ee7532d5e03

  • Size

    273KB

  • Sample

    241105-aphvzazlf1

  • MD5

    44838649aba23c5ceb8a787dd15091ed

  • SHA1

    8f997ecf01330d045573e69290665a0f7dd40066

  • SHA256

    f0893219b2b0da474437b9182dd3bbb02397e455f8fcf6c6fb694ee7532d5e03

  • SHA512

    4cbaabfbb2c441071615df7ee9895105f484daf79a5a71566d58848ab00c0c8449cd43f5205d773d3273dd11c7c90b589afb4fb46f7ee04c0bca376e73996655

  • SSDEEP

    6144:cEdqL9Tqlb3UwB7AYmFMz3LeJOyPXXUJWyRveB9W9JrB:fqJTqlbEMMYmW3A9vUJWyRW67

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      f0893219b2b0da474437b9182dd3bbb02397e455f8fcf6c6fb694ee7532d5e03

    • Size

      273KB

    • MD5

      44838649aba23c5ceb8a787dd15091ed

    • SHA1

      8f997ecf01330d045573e69290665a0f7dd40066

    • SHA256

      f0893219b2b0da474437b9182dd3bbb02397e455f8fcf6c6fb694ee7532d5e03

    • SHA512

      4cbaabfbb2c441071615df7ee9895105f484daf79a5a71566d58848ab00c0c8449cd43f5205d773d3273dd11c7c90b589afb4fb46f7ee04c0bca376e73996655

    • SSDEEP

      6144:cEdqL9Tqlb3UwB7AYmFMz3LeJOyPXXUJWyRveB9W9JrB:fqJTqlbEMMYmW3A9vUJWyRW67

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks