General

  • Target

    eee072b99f8a52872b1796ed5ccfc09f878b5a915e32f4026bcde0e456f14ac2

  • Size

    298KB

  • Sample

    241108-cyf4vatbnb

  • MD5

    efffa9d59c62e5f3669da95212cc5cae

  • SHA1

    9fa35df6de1923d89b6bc65748c05031e3be7d99

  • SHA256

    eee072b99f8a52872b1796ed5ccfc09f878b5a915e32f4026bcde0e456f14ac2

  • SHA512

    b5099e5334f26638af7349269558afdf55cd6ce6feb8a28dbe48adba496dff10f6f269f732b6a6e46e6fe6e56965f670f32f761ef248c61223d169a7993d719e

  • SSDEEP

    6144:52ECIjjW+LuLIe0T1eXwp8bXk3X4G1cmL2Gp2eT:5FCIjjW6vTHcmLxAe

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      eee072b99f8a52872b1796ed5ccfc09f878b5a915e32f4026bcde0e456f14ac2

    • Size

      298KB

    • MD5

      efffa9d59c62e5f3669da95212cc5cae

    • SHA1

      9fa35df6de1923d89b6bc65748c05031e3be7d99

    • SHA256

      eee072b99f8a52872b1796ed5ccfc09f878b5a915e32f4026bcde0e456f14ac2

    • SHA512

      b5099e5334f26638af7349269558afdf55cd6ce6feb8a28dbe48adba496dff10f6f269f732b6a6e46e6fe6e56965f670f32f761ef248c61223d169a7993d719e

    • SSDEEP

      6144:52ECIjjW+LuLIe0T1eXwp8bXk3X4G1cmL2Gp2eT:5FCIjjW6vTHcmLxAe

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks