General

  • Target

    b296a8551fccd2ad7a9fa9fef352d2c14b3f2789238531651e9ea220c083f404

  • Size

    434KB

  • Sample

    241107-m8tssstmdp

  • MD5

    142f67126466b883a3e7efe9d2a98dea

  • SHA1

    2bd988e730294ce6d7c6c234f33628d9e04e6e98

  • SHA256

    b296a8551fccd2ad7a9fa9fef352d2c14b3f2789238531651e9ea220c083f404

  • SHA512

    b29764697a432f0aaecf02e4ce718ca63795d0707581a10bea042be56f9971586b356152c494ce11d6c99ecd5bc8ea556a31b9f1dd241b1d16617d81585b82b5

  • SSDEEP

    6144:Hr0QYxhADcxG776qrJvzPkAoaTCoWYCYe7oBAimyA0L2Zv:L0Q4hIcM7+0v7kN0CjYCYcoBAsA0L2p

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      b296a8551fccd2ad7a9fa9fef352d2c14b3f2789238531651e9ea220c083f404

    • Size

      434KB

    • MD5

      142f67126466b883a3e7efe9d2a98dea

    • SHA1

      2bd988e730294ce6d7c6c234f33628d9e04e6e98

    • SHA256

      b296a8551fccd2ad7a9fa9fef352d2c14b3f2789238531651e9ea220c083f404

    • SHA512

      b29764697a432f0aaecf02e4ce718ca63795d0707581a10bea042be56f9971586b356152c494ce11d6c99ecd5bc8ea556a31b9f1dd241b1d16617d81585b82b5

    • SSDEEP

      6144:Hr0QYxhADcxG776qrJvzPkAoaTCoWYCYe7oBAimyA0L2Zv:L0Q4hIcM7+0v7kN0CjYCYcoBAsA0L2p

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks