General

  • Target

    1dbd2bda23e1ee3bddc6a8d6b7bd354d7ff9224a6e9adb967fbc613876d53f15

  • Size

    371KB

  • Sample

    241108-c2vreawkgk

  • MD5

    c4347034442ee9e035e4848cbee2a810

  • SHA1

    9c49ab12274e4cbc54dbb7d0023ce334d624d36a

  • SHA256

    1dbd2bda23e1ee3bddc6a8d6b7bd354d7ff9224a6e9adb967fbc613876d53f15

  • SHA512

    b9730927a48a3ddef0151f69ef93b4bc80b5fbaef878da2bd3c4ab2596ef8fbec30f5ead93de1b8a602e0744bacf297a0b45911c4916048db8fe2572441a42e5

  • SSDEEP

    6144:K5T6cP+DC7WJrK3tg4LobitExnGRZyodb7ITsqXigaXwVfh:K5T6cEKWJMW7GR5h7R

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      1dbd2bda23e1ee3bddc6a8d6b7bd354d7ff9224a6e9adb967fbc613876d53f15

    • Size

      371KB

    • MD5

      c4347034442ee9e035e4848cbee2a810

    • SHA1

      9c49ab12274e4cbc54dbb7d0023ce334d624d36a

    • SHA256

      1dbd2bda23e1ee3bddc6a8d6b7bd354d7ff9224a6e9adb967fbc613876d53f15

    • SHA512

      b9730927a48a3ddef0151f69ef93b4bc80b5fbaef878da2bd3c4ab2596ef8fbec30f5ead93de1b8a602e0744bacf297a0b45911c4916048db8fe2572441a42e5

    • SSDEEP

      6144:K5T6cP+DC7WJrK3tg4LobitExnGRZyodb7ITsqXigaXwVfh:K5T6cEKWJMW7GR5h7R

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks