General

  • Target

    c8b0d6f68dc48542de1985ecf707638699b433e849d72f0f98f9a0a6c03765fc

  • Size

    433KB

  • Sample

    241105-bps7da1jgs

  • MD5

    af8520188e80437c3ecd36bac428fba6

  • SHA1

    cd0a7daf181f1b5bf152fccbffcbed872bdc468c

  • SHA256

    c8b0d6f68dc48542de1985ecf707638699b433e849d72f0f98f9a0a6c03765fc

  • SHA512

    8d44091166604715f77404d44f87f010f4f3a7ec9ef59c717a8ce2d475fa6c79e4273e6a19fdf7a889a0a10b2d3ab5f445375787f545b715bd6bc7a57c1db108

  • SSDEEP

    12288:A23qDw0q1u4suLA7OTxt05stpu9fobrhJuGHlA:ACqcpZJLA762evuihb

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      c8b0d6f68dc48542de1985ecf707638699b433e849d72f0f98f9a0a6c03765fc

    • Size

      433KB

    • MD5

      af8520188e80437c3ecd36bac428fba6

    • SHA1

      cd0a7daf181f1b5bf152fccbffcbed872bdc468c

    • SHA256

      c8b0d6f68dc48542de1985ecf707638699b433e849d72f0f98f9a0a6c03765fc

    • SHA512

      8d44091166604715f77404d44f87f010f4f3a7ec9ef59c717a8ce2d475fa6c79e4273e6a19fdf7a889a0a10b2d3ab5f445375787f545b715bd6bc7a57c1db108

    • SSDEEP

      12288:A23qDw0q1u4suLA7OTxt05stpu9fobrhJuGHlA:ACqcpZJLA762evuihb

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks