General

  • Target

    b0a0c2038d93c964c8044da9f281dfdfa660eafcc3f90523746a1bb1b0bcb048

  • Size

    394KB

  • Sample

    241105-arnt1a1dpr

  • MD5

    345c1548355092a33e2824a22d2243df

  • SHA1

    f6692bfe141a4e5ee7231537f6b1601e2d994d40

  • SHA256

    b0a0c2038d93c964c8044da9f281dfdfa660eafcc3f90523746a1bb1b0bcb048

  • SHA512

    7652a36e6675e59d8145d9ca6d3968fbb0a98880dbd4f9281da640e432526f43ef5b371e242ad799c7116af45384c080d87e25fef42b139286bdd0ed3d0c8f13

  • SSDEEP

    6144:lPi6qmtILCIkpkM6TocNPoK6PoeZWubwJzOPajIJ+ZMabu0xJMan11zA:l6UWLHkp5In8wJkajQ+eVIJMaQ

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      b0a0c2038d93c964c8044da9f281dfdfa660eafcc3f90523746a1bb1b0bcb048

    • Size

      394KB

    • MD5

      345c1548355092a33e2824a22d2243df

    • SHA1

      f6692bfe141a4e5ee7231537f6b1601e2d994d40

    • SHA256

      b0a0c2038d93c964c8044da9f281dfdfa660eafcc3f90523746a1bb1b0bcb048

    • SHA512

      7652a36e6675e59d8145d9ca6d3968fbb0a98880dbd4f9281da640e432526f43ef5b371e242ad799c7116af45384c080d87e25fef42b139286bdd0ed3d0c8f13

    • SSDEEP

      6144:lPi6qmtILCIkpkM6TocNPoK6PoeZWubwJzOPajIJ+ZMabu0xJMan11zA:l6UWLHkp5In8wJkajQ+eVIJMaQ

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks