General

  • Target

    da47abfafdc5b141c741df3961546c90305e8a3e74f93ba4e937e49c798972cd

  • Size

    394KB

  • Sample

    241106-msghjaxqfv

  • MD5

    2232db11a8ea0e93ce60a3094e1fea41

  • SHA1

    ac63f3f1a3be8c3caddef0aab8cad6fae56e5731

  • SHA256

    da47abfafdc5b141c741df3961546c90305e8a3e74f93ba4e937e49c798972cd

  • SHA512

    b73b831e17b627780596b1467946e4e86c44b58666e85b46dbec28562a5e2635e318c618ef6047aa8baa4575a65e9dca7736134ef3a024f29a40dcf530f99fb5

  • SSDEEP

    6144:JvY/hfaNsYeaDDHBYolh5nkRAnlEJa7xwZ124+JXerMchss+x1UkUV:iht/a3HuUMRu7xw7f+h/wss+ck

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      da47abfafdc5b141c741df3961546c90305e8a3e74f93ba4e937e49c798972cd

    • Size

      394KB

    • MD5

      2232db11a8ea0e93ce60a3094e1fea41

    • SHA1

      ac63f3f1a3be8c3caddef0aab8cad6fae56e5731

    • SHA256

      da47abfafdc5b141c741df3961546c90305e8a3e74f93ba4e937e49c798972cd

    • SHA512

      b73b831e17b627780596b1467946e4e86c44b58666e85b46dbec28562a5e2635e318c618ef6047aa8baa4575a65e9dca7736134ef3a024f29a40dcf530f99fb5

    • SSDEEP

      6144:JvY/hfaNsYeaDDHBYolh5nkRAnlEJa7xwZ124+JXerMchss+x1UkUV:iht/a3HuUMRu7xw7f+h/wss+ck

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks