General

  • Target

    92950b3a9d241df0b382c368dec3765703a8528fc30e4514e46ef766fd64913b

  • Size

    423KB

  • Sample

    241108-ac4lxaznby

  • MD5

    57edf7e7ca4ec5d888fb1a8670f308e8

  • SHA1

    503e45366be63ef334f99af198ec54835f87bf6d

  • SHA256

    92950b3a9d241df0b382c368dec3765703a8528fc30e4514e46ef766fd64913b

  • SHA512

    495ab76ba774c08c680c1b17591d5b79b136f298481dfddc9b24c39dc35c387216823c0337c3d290e2c6834eddb82f1e4963e875a345901d0d0f78880a165b63

  • SSDEEP

    6144:zKfV9DPD5ZU4u3ea/vVYSyW9Jhh4V1EzUhLkYFdk4elBPhSfai:zmVxb5a4u3eI2Sy/V1EzUhLkielBPD

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      92950b3a9d241df0b382c368dec3765703a8528fc30e4514e46ef766fd64913b

    • Size

      423KB

    • MD5

      57edf7e7ca4ec5d888fb1a8670f308e8

    • SHA1

      503e45366be63ef334f99af198ec54835f87bf6d

    • SHA256

      92950b3a9d241df0b382c368dec3765703a8528fc30e4514e46ef766fd64913b

    • SHA512

      495ab76ba774c08c680c1b17591d5b79b136f298481dfddc9b24c39dc35c387216823c0337c3d290e2c6834eddb82f1e4963e875a345901d0d0f78880a165b63

    • SSDEEP

      6144:zKfV9DPD5ZU4u3ea/vVYSyW9Jhh4V1EzUhLkYFdk4elBPhSfai:zmVxb5a4u3eI2Sy/V1EzUhLkielBPD

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks