General

  • Target

    6d00b12b70e792646b6f8ceaa443cc1531b122f8a374a073864d04d84fdb401f

  • Size

    433KB

  • Sample

    241106-jtfqvaymcl

  • MD5

    41a4ab89f7cdc261443742b84cf936d0

  • SHA1

    015f13739fe4141d401988da35caedf92727092e

  • SHA256

    6d00b12b70e792646b6f8ceaa443cc1531b122f8a374a073864d04d84fdb401f

  • SHA512

    3bc3c35dbf8d51d32bcf7e3954baa7b82094e5bf2541f067a9b616c350dcc3a9fdc01a46446d0fb4301e29eb97870650f9777df328a9fd4aa6dd3947c859eee3

  • SSDEEP

    6144:FkedgevvvIm6t1uVWIad8Ko0aY2xxoNr/psbefV3uu1Hbs/rzte:2edKT/Iqow6oNr/psbet3uuts/rzE

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      6d00b12b70e792646b6f8ceaa443cc1531b122f8a374a073864d04d84fdb401f

    • Size

      433KB

    • MD5

      41a4ab89f7cdc261443742b84cf936d0

    • SHA1

      015f13739fe4141d401988da35caedf92727092e

    • SHA256

      6d00b12b70e792646b6f8ceaa443cc1531b122f8a374a073864d04d84fdb401f

    • SHA512

      3bc3c35dbf8d51d32bcf7e3954baa7b82094e5bf2541f067a9b616c350dcc3a9fdc01a46446d0fb4301e29eb97870650f9777df328a9fd4aa6dd3947c859eee3

    • SSDEEP

      6144:FkedgevvvIm6t1uVWIad8Ko0aY2xxoNr/psbefV3uu1Hbs/rzte:2edKT/Iqow6oNr/psbet3uuts/rzE

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks