General

  • Target

    e03c912781a23a22089cad75d0d6fa09928f5b058a484586c1360f008a6a38a3

  • Size

    298KB

  • Sample

    241108-a5dwys1fpp

  • MD5

    5107946815a6eb77ec55a3e57266a6c8

  • SHA1

    9ed89f8c5ed8cd97634a952be06cef9000ebe9e1

  • SHA256

    e03c912781a23a22089cad75d0d6fa09928f5b058a484586c1360f008a6a38a3

  • SHA512

    6896532baa10953007b0e45ea9567204ea29db761a191d091049f9b198598bae89ac1ebea1005f918a6e6254bfbd38a5b9043cea89b7d0a9576bd4a3dff05d30

  • SSDEEP

    6144:52ECIjjW+LuLIe0T1eXwp8bXk3X4G1cmL2Gp2eT:5FCIjjW6vTHcmLxAe

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      e03c912781a23a22089cad75d0d6fa09928f5b058a484586c1360f008a6a38a3

    • Size

      298KB

    • MD5

      5107946815a6eb77ec55a3e57266a6c8

    • SHA1

      9ed89f8c5ed8cd97634a952be06cef9000ebe9e1

    • SHA256

      e03c912781a23a22089cad75d0d6fa09928f5b058a484586c1360f008a6a38a3

    • SHA512

      6896532baa10953007b0e45ea9567204ea29db761a191d091049f9b198598bae89ac1ebea1005f918a6e6254bfbd38a5b9043cea89b7d0a9576bd4a3dff05d30

    • SSDEEP

      6144:52ECIjjW+LuLIe0T1eXwp8bXk3X4G1cmL2Gp2eT:5FCIjjW6vTHcmLxAe

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks