General

  • Target

    62326f21203a294a28e9f5a49c0478c29a88341a15382ac29d8bb36e9caa0202

  • Size

    371KB

  • Sample

    241107-p57lla1rfx

  • MD5

    8191d01a71677bac1ee3e3e785beda91

  • SHA1

    579e70700399d1e3db48ff5a4527fdf7017f629d

  • SHA256

    62326f21203a294a28e9f5a49c0478c29a88341a15382ac29d8bb36e9caa0202

  • SHA512

    4b3762de2d5fd33844f0308ec82e4c62fb280e485792edb02e7bc017e38caf01afa421ca68091e263fa0cad626dcaabc06fba9024c69478f729d78d7e8989046

  • SSDEEP

    6144:YnhF/lqEwRXUPzi9sgiZo4nG6Wp39Ezb7ITsqXigaXwVfi:ohF/lN/z+wDnVimP7R

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      62326f21203a294a28e9f5a49c0478c29a88341a15382ac29d8bb36e9caa0202

    • Size

      371KB

    • MD5

      8191d01a71677bac1ee3e3e785beda91

    • SHA1

      579e70700399d1e3db48ff5a4527fdf7017f629d

    • SHA256

      62326f21203a294a28e9f5a49c0478c29a88341a15382ac29d8bb36e9caa0202

    • SHA512

      4b3762de2d5fd33844f0308ec82e4c62fb280e485792edb02e7bc017e38caf01afa421ca68091e263fa0cad626dcaabc06fba9024c69478f729d78d7e8989046

    • SSDEEP

      6144:YnhF/lqEwRXUPzi9sgiZo4nG6Wp39Ezb7ITsqXigaXwVfi:ohF/lN/z+wDnVimP7R

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks