General

  • Target

    740b6341b3647a086dfc6d89a0cca95c2dc35c5a4ddfe01a57723c994ef3f1c4

  • Size

    293KB

  • Sample

    241105-yv8kksxjgt

  • MD5

    85a68996f6ffeff31e6ce7d8532aca25

  • SHA1

    c7c38ae5f84a5d688db7a5491bfa690ecbe5c226

  • SHA256

    740b6341b3647a086dfc6d89a0cca95c2dc35c5a4ddfe01a57723c994ef3f1c4

  • SHA512

    c1211ba7a6c2de4bc1b361271cd47b442e91a9fa4d1a4a83261181a1e5eb2368147a5bdd6adaea35b6fca39ce34c4a194d4c48565954baae103bb16dd3b53ff2

  • SSDEEP

    6144:CLaS0U0uK3XyxqmFnNfEkUM8M+ShuSz6abPuzbgwuvjB:CuS0Uqn+FGk/8Mfh5OWunn0

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.168:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      740b6341b3647a086dfc6d89a0cca95c2dc35c5a4ddfe01a57723c994ef3f1c4

    • Size

      293KB

    • MD5

      85a68996f6ffeff31e6ce7d8532aca25

    • SHA1

      c7c38ae5f84a5d688db7a5491bfa690ecbe5c226

    • SHA256

      740b6341b3647a086dfc6d89a0cca95c2dc35c5a4ddfe01a57723c994ef3f1c4

    • SHA512

      c1211ba7a6c2de4bc1b361271cd47b442e91a9fa4d1a4a83261181a1e5eb2368147a5bdd6adaea35b6fca39ce34c4a194d4c48565954baae103bb16dd3b53ff2

    • SSDEEP

      6144:CLaS0U0uK3XyxqmFnNfEkUM8M+ShuSz6abPuzbgwuvjB:CuS0Uqn+FGk/8Mfh5OWunn0

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks