General

  • Target

    28260b393341878cdb2f77d71638c71e0e81cda79fff80dd58f1fc5a72a1e0ed

  • Size

    298KB

  • Sample

    241108-b3pfcasdqh

  • MD5

    3d68f841d2fc26169edb917baf4f25cb

  • SHA1

    067d35ee9cfba8de732296dda33a222e43df7f33

  • SHA256

    28260b393341878cdb2f77d71638c71e0e81cda79fff80dd58f1fc5a72a1e0ed

  • SHA512

    728cfeee0afab8e6a13560ba68a51cc40390e70aedbe20dec3fef76c025d7900be6b2e50d62986f05feb8ebea5aa782b07782e32af06417990aa2551ba35702b

  • SSDEEP

    6144:52ECIjjW+LuLIe0T1eXwp8bXk3X4G1cmL2Gp2eT:5FCIjjW6vTHcmLxAe

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      28260b393341878cdb2f77d71638c71e0e81cda79fff80dd58f1fc5a72a1e0ed

    • Size

      298KB

    • MD5

      3d68f841d2fc26169edb917baf4f25cb

    • SHA1

      067d35ee9cfba8de732296dda33a222e43df7f33

    • SHA256

      28260b393341878cdb2f77d71638c71e0e81cda79fff80dd58f1fc5a72a1e0ed

    • SHA512

      728cfeee0afab8e6a13560ba68a51cc40390e70aedbe20dec3fef76c025d7900be6b2e50d62986f05feb8ebea5aa782b07782e32af06417990aa2551ba35702b

    • SSDEEP

      6144:52ECIjjW+LuLIe0T1eXwp8bXk3X4G1cmL2Gp2eT:5FCIjjW6vTHcmLxAe

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks