General

  • Target

    dd10ae646bffd262e8932c986c2ba1369af963cccfe760f7835b16c207bf8419

  • Size

    433KB

  • Sample

    241105-k6fgaaybmc

  • MD5

    78d19e7c2fe60ebf051a5c9b4974d978

  • SHA1

    cb9faaf2ff27677e360bd893aed9e55be81f2378

  • SHA256

    dd10ae646bffd262e8932c986c2ba1369af963cccfe760f7835b16c207bf8419

  • SHA512

    6202a82d15af89e515eb159fe5594be1ce04ef480792e5a5b8377dafb3356ebf10ccc9adc75fd45d631775cad614d2724dd8c7fe812f07cfbc841fa9aa59d4ed

  • SSDEEP

    12288:A23qDw0q1u4suLA7OTxt05stpu9fobrhJuGHlA:ACqcpZJLA762evuihb

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      dd10ae646bffd262e8932c986c2ba1369af963cccfe760f7835b16c207bf8419

    • Size

      433KB

    • MD5

      78d19e7c2fe60ebf051a5c9b4974d978

    • SHA1

      cb9faaf2ff27677e360bd893aed9e55be81f2378

    • SHA256

      dd10ae646bffd262e8932c986c2ba1369af963cccfe760f7835b16c207bf8419

    • SHA512

      6202a82d15af89e515eb159fe5594be1ce04ef480792e5a5b8377dafb3356ebf10ccc9adc75fd45d631775cad614d2724dd8c7fe812f07cfbc841fa9aa59d4ed

    • SSDEEP

      12288:A23qDw0q1u4suLA7OTxt05stpu9fobrhJuGHlA:ACqcpZJLA762evuihb

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks