General

  • Target

    feebbd51b91a4235aa043dde4f9ce876efb8441219136357f6227d88865d969a

  • Size

    411KB

  • Sample

    241107-sf1zasvbmd

  • MD5

    e1d10fcd7de94f0d2b3e918232aede05

  • SHA1

    025a842361a3365e0f1854484ac7bb35f7c7a09f

  • SHA256

    feebbd51b91a4235aa043dde4f9ce876efb8441219136357f6227d88865d969a

  • SHA512

    c9a9fad9040688b81a8f6bf26a3681fbfeb035288a6ff9ebf047012ac8a01b33db7164296704a97c979b49d65a745c11e7069e749a4d0c673d1e6f6bc46b9f1a

  • SSDEEP

    6144:WKwDQ4UXE73s4FCu8zli0+mXjA4cz5hb/HH5uixRoKwCrWXZu:3aQ4UXE73slPw4cz5N/HkeRoE/

Malware Config

Extracted

Family

redline

Botnet

11

C2

45.9.20.157:46257

Attributes
  • auth_value

    344c26d7f808f9c29e47633026f19aa5

Targets

    • Target

      feebbd51b91a4235aa043dde4f9ce876efb8441219136357f6227d88865d969a

    • Size

      411KB

    • MD5

      e1d10fcd7de94f0d2b3e918232aede05

    • SHA1

      025a842361a3365e0f1854484ac7bb35f7c7a09f

    • SHA256

      feebbd51b91a4235aa043dde4f9ce876efb8441219136357f6227d88865d969a

    • SHA512

      c9a9fad9040688b81a8f6bf26a3681fbfeb035288a6ff9ebf047012ac8a01b33db7164296704a97c979b49d65a745c11e7069e749a4d0c673d1e6f6bc46b9f1a

    • SSDEEP

      6144:WKwDQ4UXE73s4FCu8zli0+mXjA4cz5hb/HH5uixRoKwCrWXZu:3aQ4UXE73slPw4cz5N/HkeRoE/

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks