General

  • Target

    f82a5a447490be87943d847ccb24f6d9d734e6726de049ee0a48cf5a417a46cd

  • Size

    433KB

  • Sample

    241105-pm2ydszqaw

  • MD5

    bb4017d3ed02204b7f02baf9c0e6a6d8

  • SHA1

    c76264982f9ee3c72066c68801260458f6aacdf2

  • SHA256

    f82a5a447490be87943d847ccb24f6d9d734e6726de049ee0a48cf5a417a46cd

  • SHA512

    b93fa8a41d749016591ea8de7b2ddbae4a70975f3e921d11e88b59473ea24068b2d64917aadb43e192dea54a4b575b6c01621f27b8459bd60a06a0208ba28c3e

  • SSDEEP

    6144:AdToZq3KGUE6ySWgZk589XDR8JuLLH2PRpm7oio4AylG8Tqpx:KTn4E6y+k58dGQX2PRpm7/o4AD8Tq/

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      f82a5a447490be87943d847ccb24f6d9d734e6726de049ee0a48cf5a417a46cd

    • Size

      433KB

    • MD5

      bb4017d3ed02204b7f02baf9c0e6a6d8

    • SHA1

      c76264982f9ee3c72066c68801260458f6aacdf2

    • SHA256

      f82a5a447490be87943d847ccb24f6d9d734e6726de049ee0a48cf5a417a46cd

    • SHA512

      b93fa8a41d749016591ea8de7b2ddbae4a70975f3e921d11e88b59473ea24068b2d64917aadb43e192dea54a4b575b6c01621f27b8459bd60a06a0208ba28c3e

    • SSDEEP

      6144:AdToZq3KGUE6ySWgZk589XDR8JuLLH2PRpm7oio4AylG8Tqpx:KTn4E6y+k58dGQX2PRpm7/o4AD8Tq/

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks