General

  • Target

    59b1ff3b55d99abdba06938cf11cf3a92ee1782bb0612d9fda50b77325749cb2

  • Size

    273KB

  • Sample

    241105-brsnmatpan

  • MD5

    f311441beaa69766bd1b0b639d978fa4

  • SHA1

    321d1cc4ff477054d79fa95f0c9625fa06351b76

  • SHA256

    59b1ff3b55d99abdba06938cf11cf3a92ee1782bb0612d9fda50b77325749cb2

  • SHA512

    c37e74cacb3d7b85b984108b5b20c26dd647175a0e4c64721e426b992d7d739b362e4a34880609ae8dab29cd4128eb06fc089a5bbedcd9bcd037a04af80672b6

  • SSDEEP

    6144:h8qL1OPqNLpBmk+fF1FhLeVLvNE8qifYqui4nB:eqcPqNLLm1FxeV7y8FKzn

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      59b1ff3b55d99abdba06938cf11cf3a92ee1782bb0612d9fda50b77325749cb2

    • Size

      273KB

    • MD5

      f311441beaa69766bd1b0b639d978fa4

    • SHA1

      321d1cc4ff477054d79fa95f0c9625fa06351b76

    • SHA256

      59b1ff3b55d99abdba06938cf11cf3a92ee1782bb0612d9fda50b77325749cb2

    • SHA512

      c37e74cacb3d7b85b984108b5b20c26dd647175a0e4c64721e426b992d7d739b362e4a34880609ae8dab29cd4128eb06fc089a5bbedcd9bcd037a04af80672b6

    • SSDEEP

      6144:h8qL1OPqNLpBmk+fF1FhLeVLvNE8qifYqui4nB:eqcPqNLLm1FxeV7y8FKzn

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks