General

  • Target

    5cf7de6407476ef3bd1f72165e895e9be3fdcfdc3ddcbb5261208395bd3553fb

  • Size

    411KB

  • Sample

    241107-s59bzaverm

  • MD5

    001d5384e76461721d439e45feb34a2d

  • SHA1

    67a9f527ee4f46ddd81f4c5d3530dc1af9acb5ab

  • SHA256

    5cf7de6407476ef3bd1f72165e895e9be3fdcfdc3ddcbb5261208395bd3553fb

  • SHA512

    90c00cb4542c032a3e965a943343693028cac7d5994cad52e8e10c210ec451c222bd522c76392e62ad15f13bce5aeb5497921dbcf91507780ed9a2f8a4521e67

  • SSDEEP

    6144:WKwDQ4UXE73s4FCu8zli0+mXjA4cz5hb/HH5uixRoKwCrWXZu:3aQ4UXE73slPw4cz5N/HkeRoE/

Malware Config

Extracted

Family

redline

Botnet

11

C2

45.9.20.157:46257

Attributes
  • auth_value

    344c26d7f808f9c29e47633026f19aa5

Targets

    • Target

      5cf7de6407476ef3bd1f72165e895e9be3fdcfdc3ddcbb5261208395bd3553fb

    • Size

      411KB

    • MD5

      001d5384e76461721d439e45feb34a2d

    • SHA1

      67a9f527ee4f46ddd81f4c5d3530dc1af9acb5ab

    • SHA256

      5cf7de6407476ef3bd1f72165e895e9be3fdcfdc3ddcbb5261208395bd3553fb

    • SHA512

      90c00cb4542c032a3e965a943343693028cac7d5994cad52e8e10c210ec451c222bd522c76392e62ad15f13bce5aeb5497921dbcf91507780ed9a2f8a4521e67

    • SSDEEP

      6144:WKwDQ4UXE73s4FCu8zli0+mXjA4cz5hb/HH5uixRoKwCrWXZu:3aQ4UXE73slPw4cz5N/HkeRoE/

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks