General

  • Target

    15a0902a05d5c4b76b5470eae75809d54349c9a3923fd9daed9bd33c4fb96805

  • Size

    428KB

  • Sample

    241107-m9jzzs1fkl

  • MD5

    86e21fd81b269d375ef2ef49c8f5996c

  • SHA1

    0fb6f3d0278dbbcc2e83cd9f7311c2503415240c

  • SHA256

    15a0902a05d5c4b76b5470eae75809d54349c9a3923fd9daed9bd33c4fb96805

  • SHA512

    a5d2ed2d05e99f3290a89d8c4138b1b054f9525866d84c4e4075b0e0b07c813189778434a753feb1f2938f239379d7982a3b27ad2677ccffc81f71c35f6a0c75

  • SSDEEP

    6144:HheiEHjdNxQbjcTIldEfxcLD0XN6uVQF5em6jozUXwO4i7hAX3oYjGmSp/w:HXU5GwBcLDIgBUXwO4i7hATjGm/

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      15a0902a05d5c4b76b5470eae75809d54349c9a3923fd9daed9bd33c4fb96805

    • Size

      428KB

    • MD5

      86e21fd81b269d375ef2ef49c8f5996c

    • SHA1

      0fb6f3d0278dbbcc2e83cd9f7311c2503415240c

    • SHA256

      15a0902a05d5c4b76b5470eae75809d54349c9a3923fd9daed9bd33c4fb96805

    • SHA512

      a5d2ed2d05e99f3290a89d8c4138b1b054f9525866d84c4e4075b0e0b07c813189778434a753feb1f2938f239379d7982a3b27ad2677ccffc81f71c35f6a0c75

    • SSDEEP

      6144:HheiEHjdNxQbjcTIldEfxcLD0XN6uVQF5em6jozUXwO4i7hAX3oYjGmSp/w:HXU5GwBcLDIgBUXwO4i7hATjGm/

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks