General

  • Target

    4cd5b6c93ff816923a09bb5675c44f33b6fe72067905889c03e36c4a6aa40b80

  • Size

    433KB

  • Sample

    241105-lsnfea1pbq

  • MD5

    e3e62cf49ed89454209c52e29c2c14e0

  • SHA1

    1624f5bec41d8cc5d6b43c5ffe76a55af7f9dc88

  • SHA256

    4cd5b6c93ff816923a09bb5675c44f33b6fe72067905889c03e36c4a6aa40b80

  • SHA512

    d6830405da5086c700836728de7d369a948e1a4791a191843050cc552ef687089939f6795604e92f5f6fad84ab214cab22cbf2ddbb59029879812eca2cfec85b

  • SSDEEP

    6144:pOR5Bk9cF45s5zJtXXYLE/32/bW7JF3qpDLUwznoFid:c/B4H5WJqLE/6W773qpEwzno4

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      4cd5b6c93ff816923a09bb5675c44f33b6fe72067905889c03e36c4a6aa40b80

    • Size

      433KB

    • MD5

      e3e62cf49ed89454209c52e29c2c14e0

    • SHA1

      1624f5bec41d8cc5d6b43c5ffe76a55af7f9dc88

    • SHA256

      4cd5b6c93ff816923a09bb5675c44f33b6fe72067905889c03e36c4a6aa40b80

    • SHA512

      d6830405da5086c700836728de7d369a948e1a4791a191843050cc552ef687089939f6795604e92f5f6fad84ab214cab22cbf2ddbb59029879812eca2cfec85b

    • SSDEEP

      6144:pOR5Bk9cF45s5zJtXXYLE/32/bW7JF3qpDLUwznoFid:c/B4H5WJqLE/6W773qpEwzno4

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks