General

  • Target

    10fdd10896754946d07cf5d299d5ad0449f90d94653dc49adef6fc672ce66d4f

  • Size

    434KB

  • Sample

    241106-vwbqfsvdqj

  • MD5

    03527a522be344945c03bbb813153835

  • SHA1

    173b8d54f99b62e3363ba67c9379703fd33f53e2

  • SHA256

    10fdd10896754946d07cf5d299d5ad0449f90d94653dc49adef6fc672ce66d4f

  • SHA512

    ab49d7215903ca812862415df61b5c4e9cabc6858c7dd2c159f4591737176f11d1754479f755431f9cfa1f26894bfcdfd310910dbfa52c4ace3291833d43cf0e

  • SSDEEP

    12288:OIVUIC/qcIs72/cPQIInQAoqMQdds+4R:OKUIC/2CPQVQdW3

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      10fdd10896754946d07cf5d299d5ad0449f90d94653dc49adef6fc672ce66d4f

    • Size

      434KB

    • MD5

      03527a522be344945c03bbb813153835

    • SHA1

      173b8d54f99b62e3363ba67c9379703fd33f53e2

    • SHA256

      10fdd10896754946d07cf5d299d5ad0449f90d94653dc49adef6fc672ce66d4f

    • SHA512

      ab49d7215903ca812862415df61b5c4e9cabc6858c7dd2c159f4591737176f11d1754479f755431f9cfa1f26894bfcdfd310910dbfa52c4ace3291833d43cf0e

    • SSDEEP

      12288:OIVUIC/qcIs72/cPQIInQAoqMQdds+4R:OKUIC/2CPQVQdW3

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks