General

  • Target

    314862875f52f48b7d4a60e888411a4e231a8cb02d289ffc55d0edb396b21410

  • Size

    297KB

  • Sample

    241107-vsn7dawfjn

  • MD5

    7291b659b63ccd534a5b1938d835f248

  • SHA1

    29b0af389a9d32a9f5a4160f8c992dc2b2296df1

  • SHA256

    314862875f52f48b7d4a60e888411a4e231a8cb02d289ffc55d0edb396b21410

  • SHA512

    0cca71cdb996d91b4ba08c26fc90e6bc7712caa9a93fd19d9113b4bb228a7d5c709a9097610dfab6f7440726cde205fa1f80a81c4db10cbfd173e7f4de66c056

  • SSDEEP

    6144:bHX+iXvoPGKN3MYAXcK6YWo2mYLVe2PRy6u802JJs:b3+iXvoPoYISTLVHZy6zJ

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      314862875f52f48b7d4a60e888411a4e231a8cb02d289ffc55d0edb396b21410

    • Size

      297KB

    • MD5

      7291b659b63ccd534a5b1938d835f248

    • SHA1

      29b0af389a9d32a9f5a4160f8c992dc2b2296df1

    • SHA256

      314862875f52f48b7d4a60e888411a4e231a8cb02d289ffc55d0edb396b21410

    • SHA512

      0cca71cdb996d91b4ba08c26fc90e6bc7712caa9a93fd19d9113b4bb228a7d5c709a9097610dfab6f7440726cde205fa1f80a81c4db10cbfd173e7f4de66c056

    • SSDEEP

      6144:bHX+iXvoPGKN3MYAXcK6YWo2mYLVe2PRy6u802JJs:b3+iXvoPoYISTLVHZy6zJ

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks