General

  • Target

    f3f6f359f29163272e0b4ab695e17450482258d211ae592e3c4745770a778470

  • Size

    434KB

  • Sample

    241107-m366yatlgl

  • MD5

    b7f802bbdd9ef9875598ca9b3132cfaf

  • SHA1

    ceaeead4cc12cd6d56794ed2bf8b88d88d577e7e

  • SHA256

    f3f6f359f29163272e0b4ab695e17450482258d211ae592e3c4745770a778470

  • SHA512

    91c5016e753e14b5b2f6c0a92786596b3d07d1345a8b59d13f27a35a1e03fb1a612b160d05ac974ebef79351311588a4a4d5f8f8c01b6f2cac29d9c2d81b5cc8

  • SSDEEP

    6144:z6b0HLLvfYOGa7hFs+TMrSwRoSIPbYVMoNr/psoF3736O1GdkT3TBNht:b6avJMvoS6bgMoNr/psoFr36O+kT3F

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      f3f6f359f29163272e0b4ab695e17450482258d211ae592e3c4745770a778470

    • Size

      434KB

    • MD5

      b7f802bbdd9ef9875598ca9b3132cfaf

    • SHA1

      ceaeead4cc12cd6d56794ed2bf8b88d88d577e7e

    • SHA256

      f3f6f359f29163272e0b4ab695e17450482258d211ae592e3c4745770a778470

    • SHA512

      91c5016e753e14b5b2f6c0a92786596b3d07d1345a8b59d13f27a35a1e03fb1a612b160d05ac974ebef79351311588a4a4d5f8f8c01b6f2cac29d9c2d81b5cc8

    • SSDEEP

      6144:z6b0HLLvfYOGa7hFs+TMrSwRoSIPbYVMoNr/psoF3736O1GdkT3TBNht:b6avJMvoS6bgMoNr/psoFr36O+kT3F

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks