General

  • Target

    3884923c12c808cd089c68a91219d2435c4145e99488dba910c0d2d5cbed88ae

  • Size

    383KB

  • Sample

    241108-a1nwcs1erk

  • MD5

    48ead18abb5c1b95baaa0b3a2c367144

  • SHA1

    3828f0bfc47abdb9210628c7c63a57e0947c9546

  • SHA256

    3884923c12c808cd089c68a91219d2435c4145e99488dba910c0d2d5cbed88ae

  • SHA512

    044662aa2e31085e4bc8a75c7d98ef244f30495f1bca9797985358a1c29c4d269bbfc32643203487de2e268dfa893723a957a51a7a72ebcd696896aa6643cf10

  • SSDEEP

    6144:ANaJ3TPjifAJdT1HhGB35wOx6irIvIG6PDdmXb7ITsqXigaXwVfZ:+eTbMAJdxsXx6Dv4dk7R

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      3884923c12c808cd089c68a91219d2435c4145e99488dba910c0d2d5cbed88ae

    • Size

      383KB

    • MD5

      48ead18abb5c1b95baaa0b3a2c367144

    • SHA1

      3828f0bfc47abdb9210628c7c63a57e0947c9546

    • SHA256

      3884923c12c808cd089c68a91219d2435c4145e99488dba910c0d2d5cbed88ae

    • SHA512

      044662aa2e31085e4bc8a75c7d98ef244f30495f1bca9797985358a1c29c4d269bbfc32643203487de2e268dfa893723a957a51a7a72ebcd696896aa6643cf10

    • SSDEEP

      6144:ANaJ3TPjifAJdT1HhGB35wOx6irIvIG6PDdmXb7ITsqXigaXwVfZ:+eTbMAJdxsXx6Dv4dk7R

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks