General

  • Target

    125306a9ac605a4944889bbd3856fd4ca0c8303b43a5abf3143d9258ab9c5f6f

  • Size

    293KB

  • Sample

    241107-se25zavblp

  • MD5

    65cad8f348ecf5a26c5f8197bbe68e8f

  • SHA1

    447e45910b4f42cf00228aa89aae3b3ba1fb5066

  • SHA256

    125306a9ac605a4944889bbd3856fd4ca0c8303b43a5abf3143d9258ab9c5f6f

  • SHA512

    9cdb2e2f4dba5a97836072199aaab46eff8a7a28b2f35b6fb08ed26320957d21c84cf886c50c7eb8656287e55fe65be683fd960b6cbff79bbeea8558991ee626

  • SSDEEP

    6144:CLaS0U0uK3XyxqmFnNfEkUM8M+ShuSz6abPuzbgwuvjB:CuS0Uqn+FGk/8Mfh5OWunn0

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.168:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      125306a9ac605a4944889bbd3856fd4ca0c8303b43a5abf3143d9258ab9c5f6f

    • Size

      293KB

    • MD5

      65cad8f348ecf5a26c5f8197bbe68e8f

    • SHA1

      447e45910b4f42cf00228aa89aae3b3ba1fb5066

    • SHA256

      125306a9ac605a4944889bbd3856fd4ca0c8303b43a5abf3143d9258ab9c5f6f

    • SHA512

      9cdb2e2f4dba5a97836072199aaab46eff8a7a28b2f35b6fb08ed26320957d21c84cf886c50c7eb8656287e55fe65be683fd960b6cbff79bbeea8558991ee626

    • SSDEEP

      6144:CLaS0U0uK3XyxqmFnNfEkUM8M+ShuSz6abPuzbgwuvjB:CuS0Uqn+FGk/8Mfh5OWunn0

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks