General

  • Target

    fdfeb86ca143f319b6b327cb2e735be2020531dbe9608ad69e01e42925d7734d

  • Size

    433KB

  • Sample

    241105-k4n1msyhjq

  • MD5

    56bb1def08693b379591709f580f0ab6

  • SHA1

    58cff12c1c4be10b810fd1daeda1c16e5a3198dd

  • SHA256

    fdfeb86ca143f319b6b327cb2e735be2020531dbe9608ad69e01e42925d7734d

  • SHA512

    ca44306ef0869e0c15550daab6f380c746816f57a56990fa157932e2ad7a5f86f01db03c9a1b778762ef185f807cda850b791e1658199b9b131d0deb5470978c

  • SSDEEP

    12288:A23qDw0q1u4suLA7OTxt05stpu9fobrhJuGHlA:ACqcpZJLA762evuihb

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      fdfeb86ca143f319b6b327cb2e735be2020531dbe9608ad69e01e42925d7734d

    • Size

      433KB

    • MD5

      56bb1def08693b379591709f580f0ab6

    • SHA1

      58cff12c1c4be10b810fd1daeda1c16e5a3198dd

    • SHA256

      fdfeb86ca143f319b6b327cb2e735be2020531dbe9608ad69e01e42925d7734d

    • SHA512

      ca44306ef0869e0c15550daab6f380c746816f57a56990fa157932e2ad7a5f86f01db03c9a1b778762ef185f807cda850b791e1658199b9b131d0deb5470978c

    • SSDEEP

      12288:A23qDw0q1u4suLA7OTxt05stpu9fobrhJuGHlA:ACqcpZJLA762evuihb

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks