General

  • Target

    227098943a98a4b4bdd209a9544a9b974f2660f0fd3f5ec680c12f05f562389e

  • Size

    273KB

  • Sample

    241106-xky3qaxrgj

  • MD5

    2dddbd98f5b983dadb765ffbaf32d0bb

  • SHA1

    0aac915a5c3c24b60b827fdc29ef5228536c86aa

  • SHA256

    227098943a98a4b4bdd209a9544a9b974f2660f0fd3f5ec680c12f05f562389e

  • SHA512

    df27e9b5dce6953aed3fc049fe99708118c9914404e21e383a7fc67c80d917379a9bfda1f7e14fc31931e884e818aa879a6719c9e4c130ca03fa0c51fb226584

  • SSDEEP

    6144:j8qL1OPq9S9LzZB4z16XgrVVED7jgxr23r3VwGB:oqcPq9S1ZB4z1+grAD3gxib9

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      227098943a98a4b4bdd209a9544a9b974f2660f0fd3f5ec680c12f05f562389e

    • Size

      273KB

    • MD5

      2dddbd98f5b983dadb765ffbaf32d0bb

    • SHA1

      0aac915a5c3c24b60b827fdc29ef5228536c86aa

    • SHA256

      227098943a98a4b4bdd209a9544a9b974f2660f0fd3f5ec680c12f05f562389e

    • SHA512

      df27e9b5dce6953aed3fc049fe99708118c9914404e21e383a7fc67c80d917379a9bfda1f7e14fc31931e884e818aa879a6719c9e4c130ca03fa0c51fb226584

    • SSDEEP

      6144:j8qL1OPq9S9LzZB4z16XgrVVED7jgxr23r3VwGB:oqcPq9S1ZB4z1+grAD3gxib9

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks