General

  • Target

    727d07c5fda6f0f6b55e01f679084740b18eb2b93ac6977ec8267e692c31f8b7

  • Size

    371KB

  • Sample

    241108-apl8ds1dqd

  • MD5

    091f8275a2cf42d80e692c778d3e5eb5

  • SHA1

    ae559e8680b52c0a6318e3fec0cfd7df55ab22f2

  • SHA256

    727d07c5fda6f0f6b55e01f679084740b18eb2b93ac6977ec8267e692c31f8b7

  • SHA512

    eee409a10daa4b41cdc9ce27a2c13fa5b6dee0ed2f08dad001768afdbc7f89427d188f142609b378a1cc9f97e7808f0947e7ec1eab7e291d88c859be2dc3ac3d

  • SSDEEP

    6144:YnhF/lqEwRXUPzi9sgiZo4nG6Wp39Ezb7ITsqXigaXwVfi:ohF/lN/z+wDnVimP7R

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      727d07c5fda6f0f6b55e01f679084740b18eb2b93ac6977ec8267e692c31f8b7

    • Size

      371KB

    • MD5

      091f8275a2cf42d80e692c778d3e5eb5

    • SHA1

      ae559e8680b52c0a6318e3fec0cfd7df55ab22f2

    • SHA256

      727d07c5fda6f0f6b55e01f679084740b18eb2b93ac6977ec8267e692c31f8b7

    • SHA512

      eee409a10daa4b41cdc9ce27a2c13fa5b6dee0ed2f08dad001768afdbc7f89427d188f142609b378a1cc9f97e7808f0947e7ec1eab7e291d88c859be2dc3ac3d

    • SSDEEP

      6144:YnhF/lqEwRXUPzi9sgiZo4nG6Wp39Ezb7ITsqXigaXwVfi:ohF/lN/z+wDnVimP7R

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks