General

  • Target

    a3353e1bdb576555f4f7b90c844c65788234dc84c22ae25b6f028f4327f49fa6

  • Size

    433KB

  • Sample

    241106-y5hrxaxfrk

  • MD5

    cd33ba756689e123dadc077dbc9c962a

  • SHA1

    7cb92b6a1af04d404a3b6f069f70d6f268c96b32

  • SHA256

    a3353e1bdb576555f4f7b90c844c65788234dc84c22ae25b6f028f4327f49fa6

  • SHA512

    ff2e164f3c5ed85d44fddf0223d23fd87f076c95c519b8e779392070b457399a7e69787f53e91c653ce948f5737c68cda19c79fe3b55d1d4a61f5e422caa281c

  • SSDEEP

    6144:FkedgevvvIm6t1uVWIad8Ko0aY2xxoNr/psbefV3uu1Hbs/rzte:2edKT/Iqow6oNr/psbet3uuts/rzE

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      a3353e1bdb576555f4f7b90c844c65788234dc84c22ae25b6f028f4327f49fa6

    • Size

      433KB

    • MD5

      cd33ba756689e123dadc077dbc9c962a

    • SHA1

      7cb92b6a1af04d404a3b6f069f70d6f268c96b32

    • SHA256

      a3353e1bdb576555f4f7b90c844c65788234dc84c22ae25b6f028f4327f49fa6

    • SHA512

      ff2e164f3c5ed85d44fddf0223d23fd87f076c95c519b8e779392070b457399a7e69787f53e91c653ce948f5737c68cda19c79fe3b55d1d4a61f5e422caa281c

    • SSDEEP

      6144:FkedgevvvIm6t1uVWIad8Ko0aY2xxoNr/psbefV3uu1Hbs/rzte:2edKT/Iqow6oNr/psbet3uuts/rzE

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks