General

  • Target

    f6fee7e9295d2c34fbd674f3aebb50f426c57aa353870739f7a1c5c87772fd36

  • Size

    434KB

  • Sample

    241105-zx2eqaycne

  • MD5

    b1aeb269d746afdc2a1d000baf22e853

  • SHA1

    f8f0e13fee8ee2b6dd2cd63167a0c4feaf7facd9

  • SHA256

    f6fee7e9295d2c34fbd674f3aebb50f426c57aa353870739f7a1c5c87772fd36

  • SHA512

    d5a9ad0bc2c3947c90d79424bcf77f4afb4f8a8daf29158c3d8f9bc27f3f5dd997ddcd8181dc8ed43ea16697b175734b873488f57fc6109edfd5bb660f7d5276

  • SSDEEP

    6144:Hr0QYxhADcxG776qrJvzPkAoaTCoWYCYe7oBAimyA0L2Zv:L0Q4hIcM7+0v7kN0CjYCYcoBAsA0L2p

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      f6fee7e9295d2c34fbd674f3aebb50f426c57aa353870739f7a1c5c87772fd36

    • Size

      434KB

    • MD5

      b1aeb269d746afdc2a1d000baf22e853

    • SHA1

      f8f0e13fee8ee2b6dd2cd63167a0c4feaf7facd9

    • SHA256

      f6fee7e9295d2c34fbd674f3aebb50f426c57aa353870739f7a1c5c87772fd36

    • SHA512

      d5a9ad0bc2c3947c90d79424bcf77f4afb4f8a8daf29158c3d8f9bc27f3f5dd997ddcd8181dc8ed43ea16697b175734b873488f57fc6109edfd5bb660f7d5276

    • SSDEEP

      6144:Hr0QYxhADcxG776qrJvzPkAoaTCoWYCYe7oBAimyA0L2Zv:L0Q4hIcM7+0v7kN0CjYCYcoBAsA0L2p

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks