General

  • Target

    5929b1c1a6d4cc2624d559605509f66a4a2d25ee551639f4cbc1a1be543fa27b

  • Size

    423KB

  • Sample

    241108-el5yjstrcv

  • MD5

    cf593ec8afbdec406ff7426005a3f1c5

  • SHA1

    12415e75822837f87040219521614bd0f23167da

  • SHA256

    5929b1c1a6d4cc2624d559605509f66a4a2d25ee551639f4cbc1a1be543fa27b

  • SHA512

    915faf7fecf2f857f6f8a7900d35490057b18a3dd6ce220c63ce9032a43282362b8cead381353758a930f7aad48be0730d33183721b95170ae6a6b182529d519

  • SSDEEP

    6144:zKfV9DPD5ZU4u3ea/vVYSyW9Jhh4V1EzUhLkYFdk4elBPhSfai:zmVxb5a4u3eI2Sy/V1EzUhLkielBPD

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      5929b1c1a6d4cc2624d559605509f66a4a2d25ee551639f4cbc1a1be543fa27b

    • Size

      423KB

    • MD5

      cf593ec8afbdec406ff7426005a3f1c5

    • SHA1

      12415e75822837f87040219521614bd0f23167da

    • SHA256

      5929b1c1a6d4cc2624d559605509f66a4a2d25ee551639f4cbc1a1be543fa27b

    • SHA512

      915faf7fecf2f857f6f8a7900d35490057b18a3dd6ce220c63ce9032a43282362b8cead381353758a930f7aad48be0730d33183721b95170ae6a6b182529d519

    • SSDEEP

      6144:zKfV9DPD5ZU4u3ea/vVYSyW9Jhh4V1EzUhLkYFdk4elBPhSfai:zmVxb5a4u3eI2Sy/V1EzUhLkielBPD

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks