General

  • Target

    cdfe7c7d3101ad1196d3b520f0956e676aaae9335afb3b3bcb952df0b399ad8e

  • Size

    287KB

  • Sample

    241106-k74khaxepc

  • MD5

    bf13f74d5f66284645e7d712d4705396

  • SHA1

    532a4c6f91e9eb4da67b70a9e8009e98d9fdbe61

  • SHA256

    cdfe7c7d3101ad1196d3b520f0956e676aaae9335afb3b3bcb952df0b399ad8e

  • SHA512

    6f0f6cf7ce179fb05ca3f2052e0b32ad58b74e299a2b9aaecda2f1cd11efb0a5448c581728bc51d209df290c950446c85740e68ec1b32a1c4f347eaed6ef8c9e

  • SSDEEP

    6144:Z8qL1ObqYbAiSCTmxTPj/0rtsvBS+5pTuzbgwuko6OB:mqcbquAGQTPgrtscURunnro6O

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      cdfe7c7d3101ad1196d3b520f0956e676aaae9335afb3b3bcb952df0b399ad8e

    • Size

      287KB

    • MD5

      bf13f74d5f66284645e7d712d4705396

    • SHA1

      532a4c6f91e9eb4da67b70a9e8009e98d9fdbe61

    • SHA256

      cdfe7c7d3101ad1196d3b520f0956e676aaae9335afb3b3bcb952df0b399ad8e

    • SHA512

      6f0f6cf7ce179fb05ca3f2052e0b32ad58b74e299a2b9aaecda2f1cd11efb0a5448c581728bc51d209df290c950446c85740e68ec1b32a1c4f347eaed6ef8c9e

    • SSDEEP

      6144:Z8qL1ObqYbAiSCTmxTPj/0rtsvBS+5pTuzbgwuko6OB:mqcbquAGQTPgrtscURunnro6O

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks