General

  • Target

    063de15a9acadc296d30113ce92b27934da437f5bb404725d7cb425ea47d44bd

  • Size

    373KB

  • Sample

    241107-t1tldsykbj

  • MD5

    556fa207ec1e6b42247fe70aaa04a470

  • SHA1

    4397b7c3fc520cde4081e84396378a5b72cceaab

  • SHA256

    063de15a9acadc296d30113ce92b27934da437f5bb404725d7cb425ea47d44bd

  • SHA512

    b6851b8f193f735d3941453d163351b5a643c0cab379d19f7e42e487f20ae8acf3ac6ca21de452d70ae068fb5e57a5ab516f5193b541e30556d198082c862aaa

  • SSDEEP

    6144:EWuG6QBaODOgsxbXsxsZSwzfuAXlkmwTbs3Fb7ITsqXigaXwVfz:EWuG6QBaODOg489wznXbwvi7R

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      063de15a9acadc296d30113ce92b27934da437f5bb404725d7cb425ea47d44bd

    • Size

      373KB

    • MD5

      556fa207ec1e6b42247fe70aaa04a470

    • SHA1

      4397b7c3fc520cde4081e84396378a5b72cceaab

    • SHA256

      063de15a9acadc296d30113ce92b27934da437f5bb404725d7cb425ea47d44bd

    • SHA512

      b6851b8f193f735d3941453d163351b5a643c0cab379d19f7e42e487f20ae8acf3ac6ca21de452d70ae068fb5e57a5ab516f5193b541e30556d198082c862aaa

    • SSDEEP

      6144:EWuG6QBaODOgsxbXsxsZSwzfuAXlkmwTbs3Fb7ITsqXigaXwVfz:EWuG6QBaODOg489wznXbwvi7R

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks