General

  • Target

    21cabad6738b2380a80b9b5633ba77b3228ff6eccd5da954a4acf1252e542d1b

  • Size

    252KB

  • Sample

    241107-rwvxjswpdp

  • MD5

    1cbf25bde57f71dfe2cce9e37be2d4cd

  • SHA1

    39877ff97a8c095c8568b8908306f6570c13c805

  • SHA256

    21cabad6738b2380a80b9b5633ba77b3228ff6eccd5da954a4acf1252e542d1b

  • SHA512

    5bdb15774b2869ebe952fa0f4544b017698fb166e99ec9e4746a98d1b7410c834429508b25fe17fae483d790578170a1603c32494ff8112bfed1ea60c14180d6

  • SSDEEP

    6144:kHL5GYAoUEQaW09UgnVoCeDa04pB6bjAAmlwZB:WlGtoU2bnR9bXLUZ

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      21cabad6738b2380a80b9b5633ba77b3228ff6eccd5da954a4acf1252e542d1b

    • Size

      252KB

    • MD5

      1cbf25bde57f71dfe2cce9e37be2d4cd

    • SHA1

      39877ff97a8c095c8568b8908306f6570c13c805

    • SHA256

      21cabad6738b2380a80b9b5633ba77b3228ff6eccd5da954a4acf1252e542d1b

    • SHA512

      5bdb15774b2869ebe952fa0f4544b017698fb166e99ec9e4746a98d1b7410c834429508b25fe17fae483d790578170a1603c32494ff8112bfed1ea60c14180d6

    • SSDEEP

      6144:kHL5GYAoUEQaW09UgnVoCeDa04pB6bjAAmlwZB:WlGtoU2bnR9bXLUZ

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks