General

  • Target

    adeca56a6b6f887009567571ccdfec707726df413ec7140ef3b418694a2f9903

  • Size

    433KB

  • Sample

    241105-lvssxazcrl

  • MD5

    65834c1620a996892e979d4240bf336b

  • SHA1

    7b18700bbd24670d3d7e39f4ff7512a92a294f7c

  • SHA256

    adeca56a6b6f887009567571ccdfec707726df413ec7140ef3b418694a2f9903

  • SHA512

    eb302841fa076b24dbff4fece10e6ee5431db663650ba324c16f47bf3247a1f6a95c240891ee1ac31257cb8c6dd78b9d6d4202891fd01973930ef4a27ed3a7ba

  • SSDEEP

    6144:pOR5Bk9cF45s5zJtXXYLE/32/bW7JF3qpDLUwznoFid:c/B4H5WJqLE/6W773qpEwzno4

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      adeca56a6b6f887009567571ccdfec707726df413ec7140ef3b418694a2f9903

    • Size

      433KB

    • MD5

      65834c1620a996892e979d4240bf336b

    • SHA1

      7b18700bbd24670d3d7e39f4ff7512a92a294f7c

    • SHA256

      adeca56a6b6f887009567571ccdfec707726df413ec7140ef3b418694a2f9903

    • SHA512

      eb302841fa076b24dbff4fece10e6ee5431db663650ba324c16f47bf3247a1f6a95c240891ee1ac31257cb8c6dd78b9d6d4202891fd01973930ef4a27ed3a7ba

    • SSDEEP

      6144:pOR5Bk9cF45s5zJtXXYLE/32/bW7JF3qpDLUwznoFid:c/B4H5WJqLE/6W773qpEwzno4

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks