General

  • Target

    558991e3b57431441349d8657e3e34627de6748ef6560fe5ecdd94bda09f4409

  • Size

    370KB

  • Sample

    241108-av9wms1ekp

  • MD5

    36019c95a60d6ef6464eb8c02562a047

  • SHA1

    9351495033bb894571cd54479f69bffdb30502ce

  • SHA256

    558991e3b57431441349d8657e3e34627de6748ef6560fe5ecdd94bda09f4409

  • SHA512

    353c0b3ae785dbc1648c58cb62721cddf8cbd133aec6e21542204e38bea03a34434db6c31af0e4afd7da94df7b81fd60e2aaaa91edac050bdcdd36afd45ba03d

  • SSDEEP

    6144:5aq04PVZTOVCKCvwhMxR2HqOvobcjgw3DBMN9S0WLBfgb7ITsqXigaXwVfi:5aq04PvJDwex4HqTbckoti9wtfA7R

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      558991e3b57431441349d8657e3e34627de6748ef6560fe5ecdd94bda09f4409

    • Size

      370KB

    • MD5

      36019c95a60d6ef6464eb8c02562a047

    • SHA1

      9351495033bb894571cd54479f69bffdb30502ce

    • SHA256

      558991e3b57431441349d8657e3e34627de6748ef6560fe5ecdd94bda09f4409

    • SHA512

      353c0b3ae785dbc1648c58cb62721cddf8cbd133aec6e21542204e38bea03a34434db6c31af0e4afd7da94df7b81fd60e2aaaa91edac050bdcdd36afd45ba03d

    • SSDEEP

      6144:5aq04PVZTOVCKCvwhMxR2HqOvobcjgw3DBMN9S0WLBfgb7ITsqXigaXwVfi:5aq04PvJDwex4HqTbckoti9wtfA7R

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks