General

  • Target

    c60060a44c00deca893e5ed3535d78ed2ee143406f8631a724fac63c6d7b0826

  • Size

    411KB

  • Sample

    241107-evah1avjdt

  • MD5

    230220c07c6810e80e56b6f646347a53

  • SHA1

    7d185eee98d2d76db70f2e70b1cb41f3883a2b8e

  • SHA256

    c60060a44c00deca893e5ed3535d78ed2ee143406f8631a724fac63c6d7b0826

  • SHA512

    f65c1e852e2501d0b5529f204ef1688c1f9e641f89cdf6eb87de6daa338c40b6943221c1bcc2d086ede43de9911cf118be09a1b60a78ec0b673bcb0b98ed2357

  • SSDEEP

    6144:WKwDQ4UXE73s4FCu8zli0+mXjA4cz5hb/HH5uixRoKwCrWXZu:3aQ4UXE73slPw4cz5N/HkeRoE/

Malware Config

Extracted

Family

redline

Botnet

11

C2

45.9.20.157:46257

Attributes
  • auth_value

    344c26d7f808f9c29e47633026f19aa5

Targets

    • Target

      c60060a44c00deca893e5ed3535d78ed2ee143406f8631a724fac63c6d7b0826

    • Size

      411KB

    • MD5

      230220c07c6810e80e56b6f646347a53

    • SHA1

      7d185eee98d2d76db70f2e70b1cb41f3883a2b8e

    • SHA256

      c60060a44c00deca893e5ed3535d78ed2ee143406f8631a724fac63c6d7b0826

    • SHA512

      f65c1e852e2501d0b5529f204ef1688c1f9e641f89cdf6eb87de6daa338c40b6943221c1bcc2d086ede43de9911cf118be09a1b60a78ec0b673bcb0b98ed2357

    • SSDEEP

      6144:WKwDQ4UXE73s4FCu8zli0+mXjA4cz5hb/HH5uixRoKwCrWXZu:3aQ4UXE73slPw4cz5N/HkeRoE/

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks