General

  • Target

    b570c8e0edb3692f5fd066d965f6f7ed07651eab6c31967ee86eccb7f2dbfdf7

  • Size

    434KB

  • Sample

    241105-n4ptqazmez

  • MD5

    9fbb751379e611b373a94121685515f8

  • SHA1

    9da279a2d03d974543e5f1a247b70254856c777a

  • SHA256

    b570c8e0edb3692f5fd066d965f6f7ed07651eab6c31967ee86eccb7f2dbfdf7

  • SHA512

    b827740447ae6e91459089b7daac0ee749890c2c8938989f44f70446aabb7a4839f1852ab1f454d9da81e231515f3170a8cc49fba2dbc9a28832530e30f835fb

  • SSDEEP

    6144:IA/r6ksws1/whwnCWCDmV344pWNE20JvHoinidCso6URDkp6:J/rroDCWeW7sE20JPoinnso6UdK

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      b570c8e0edb3692f5fd066d965f6f7ed07651eab6c31967ee86eccb7f2dbfdf7

    • Size

      434KB

    • MD5

      9fbb751379e611b373a94121685515f8

    • SHA1

      9da279a2d03d974543e5f1a247b70254856c777a

    • SHA256

      b570c8e0edb3692f5fd066d965f6f7ed07651eab6c31967ee86eccb7f2dbfdf7

    • SHA512

      b827740447ae6e91459089b7daac0ee749890c2c8938989f44f70446aabb7a4839f1852ab1f454d9da81e231515f3170a8cc49fba2dbc9a28832530e30f835fb

    • SSDEEP

      6144:IA/r6ksws1/whwnCWCDmV344pWNE20JvHoinidCso6URDkp6:J/rroDCWeW7sE20JPoinnso6UdK

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks