General

  • Target

    4f3baa3483adb1d446762530e2f63e423c444a4f75b59a6b11504b72ce6cf98c

  • Size

    422KB

  • Sample

    241108-abf48a1arp

  • MD5

    ac26c2b3e563674f56bc1a862e615fbc

  • SHA1

    c8f38bb662232c6fc96ca80278fe6e19bd6a704d

  • SHA256

    4f3baa3483adb1d446762530e2f63e423c444a4f75b59a6b11504b72ce6cf98c

  • SHA512

    2f4c6f562abe8e720d999265b77105c4d9b789236d305f8cb30e0df69806cbead0996a36154a72cea4d6952f5453cb5a994510ed049074c036ce63ef53707136

  • SSDEEP

    12288:snEt5YG/nn8LXObRBxF6fSoDJMeAZomw:snw/nCXObf6zNMGN

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      4f3baa3483adb1d446762530e2f63e423c444a4f75b59a6b11504b72ce6cf98c

    • Size

      422KB

    • MD5

      ac26c2b3e563674f56bc1a862e615fbc

    • SHA1

      c8f38bb662232c6fc96ca80278fe6e19bd6a704d

    • SHA256

      4f3baa3483adb1d446762530e2f63e423c444a4f75b59a6b11504b72ce6cf98c

    • SHA512

      2f4c6f562abe8e720d999265b77105c4d9b789236d305f8cb30e0df69806cbead0996a36154a72cea4d6952f5453cb5a994510ed049074c036ce63ef53707136

    • SSDEEP

      12288:snEt5YG/nn8LXObRBxF6fSoDJMeAZomw:snw/nCXObf6zNMGN

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks