General

  • Target

    1f9f06681926b398d719d17632ae2ad78a9c2c507fe8e77557e9d9a0f8410d48

  • Size

    410KB

  • Sample

    241107-kthe4ssjcn

  • MD5

    5a7709c1e23b54f5b23ffbc49e474f25

  • SHA1

    e8052bacede7f50cf8320872a2e9da3872f0bebd

  • SHA256

    1f9f06681926b398d719d17632ae2ad78a9c2c507fe8e77557e9d9a0f8410d48

  • SHA512

    a2bc1cf0d1e517e99cb759985aa3f82a645e897aecfb4af673da7c46d849b78e5f0d1a68e10ce1172523e0573b73a28db1bec53f47fac6156e6822c6ef2b50f5

  • SSDEEP

    6144:kMRBC/R6TE/iRAtvdnm4iYVC0dbflCZjmUdhTjMmhIkzHf0KRGGDkTB5wCuPG1:AW6tc4iGCyfIZjmFmikzHf0D0kTFiG

Malware Config

Extracted

Family

redline

Botnet

11

C2

45.9.20.157:46257

Attributes
  • auth_value

    344c26d7f808f9c29e47633026f19aa5

Targets

    • Target

      1f9f06681926b398d719d17632ae2ad78a9c2c507fe8e77557e9d9a0f8410d48

    • Size

      410KB

    • MD5

      5a7709c1e23b54f5b23ffbc49e474f25

    • SHA1

      e8052bacede7f50cf8320872a2e9da3872f0bebd

    • SHA256

      1f9f06681926b398d719d17632ae2ad78a9c2c507fe8e77557e9d9a0f8410d48

    • SHA512

      a2bc1cf0d1e517e99cb759985aa3f82a645e897aecfb4af673da7c46d849b78e5f0d1a68e10ce1172523e0573b73a28db1bec53f47fac6156e6822c6ef2b50f5

    • SSDEEP

      6144:kMRBC/R6TE/iRAtvdnm4iYVC0dbflCZjmUdhTjMmhIkzHf0KRGGDkTB5wCuPG1:AW6tc4iGCyfIZjmFmikzHf0D0kTFiG

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks