General

  • Target

    31777e7306ec0c974abfd2c7e524890a6492678a8c1c8151fe47cd67776a9154

  • Size

    434KB

  • Sample

    241106-w1vjsswbnl

  • MD5

    cc4bbe77228078dce854e41f29e21812

  • SHA1

    78504a6e4a97f9bedd1592b1b5507a1396188958

  • SHA256

    31777e7306ec0c974abfd2c7e524890a6492678a8c1c8151fe47cd67776a9154

  • SHA512

    98faf8ff64e267c79db2a85b9788dfa162efce642392c88e2b725aa86960204f53694a757a81ff6fe114ee2734af6a9edc46f7cbd43690b3cb9da7d0b242d2eb

  • SSDEEP

    6144:Hr0QYxhADcxG776qrJvzPkAoaTCoWYCYe7oBAimyA0L2Zv:L0Q4hIcM7+0v7kN0CjYCYcoBAsA0L2p

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      31777e7306ec0c974abfd2c7e524890a6492678a8c1c8151fe47cd67776a9154

    • Size

      434KB

    • MD5

      cc4bbe77228078dce854e41f29e21812

    • SHA1

      78504a6e4a97f9bedd1592b1b5507a1396188958

    • SHA256

      31777e7306ec0c974abfd2c7e524890a6492678a8c1c8151fe47cd67776a9154

    • SHA512

      98faf8ff64e267c79db2a85b9788dfa162efce642392c88e2b725aa86960204f53694a757a81ff6fe114ee2734af6a9edc46f7cbd43690b3cb9da7d0b242d2eb

    • SSDEEP

      6144:Hr0QYxhADcxG776qrJvzPkAoaTCoWYCYe7oBAimyA0L2Zv:L0Q4hIcM7+0v7kN0CjYCYcoBAsA0L2p

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks