General

  • Target

    85208afe9f3518ebc48106912fd913464a517d00aaedeed4d4e1fa1780cc951c

  • Size

    252KB

  • Sample

    241106-ltlm7sydjq

  • MD5

    e846b5115d0c704be524f0ec7bb87fc3

  • SHA1

    b8b0bbc95b289c26e295edbac8b45854f655f110

  • SHA256

    85208afe9f3518ebc48106912fd913464a517d00aaedeed4d4e1fa1780cc951c

  • SHA512

    4201de1378b206f3fc9e7daf9eac0ca4ed9bf854b34fbe682dfabab250ab708d56a834ffde99febd923999f1ca9bf011553547f0efbcff1e3f1a2bf23e76252a

  • SSDEEP

    6144:kHL5GYAoUEQaW09UgnVoCeDa04pB6bjAAmlwZB:WlGtoU2bnR9bXLUZ

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      85208afe9f3518ebc48106912fd913464a517d00aaedeed4d4e1fa1780cc951c

    • Size

      252KB

    • MD5

      e846b5115d0c704be524f0ec7bb87fc3

    • SHA1

      b8b0bbc95b289c26e295edbac8b45854f655f110

    • SHA256

      85208afe9f3518ebc48106912fd913464a517d00aaedeed4d4e1fa1780cc951c

    • SHA512

      4201de1378b206f3fc9e7daf9eac0ca4ed9bf854b34fbe682dfabab250ab708d56a834ffde99febd923999f1ca9bf011553547f0efbcff1e3f1a2bf23e76252a

    • SSDEEP

      6144:kHL5GYAoUEQaW09UgnVoCeDa04pB6bjAAmlwZB:WlGtoU2bnR9bXLUZ

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks