General

  • Target

    cfa401e388d78e5df25de0e88a728cbe87e8256c665c975716a46a62c039f73f

  • Size

    371KB

  • Sample

    241108-fgfzasvndx

  • MD5

    23782ca8344e48f66a1b99cfa92d28ca

  • SHA1

    7eedc6ad383dfe2fd822e896b7cbf98fca9bf886

  • SHA256

    cfa401e388d78e5df25de0e88a728cbe87e8256c665c975716a46a62c039f73f

  • SHA512

    53ebead01cf89f2d5364100c53769332deb3b6bcbda153e0c2517d48dd0b327889e846b13996daa6308ee57be1c4dbfb24f531f214d322230c8ab3b6979a1b81

  • SSDEEP

    6144:YnhF/lqEwRXUPzi9sgiZo4nG6Wp39Ezb7ITsqXigaXwVfi:ohF/lN/z+wDnVimP7R

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      cfa401e388d78e5df25de0e88a728cbe87e8256c665c975716a46a62c039f73f

    • Size

      371KB

    • MD5

      23782ca8344e48f66a1b99cfa92d28ca

    • SHA1

      7eedc6ad383dfe2fd822e896b7cbf98fca9bf886

    • SHA256

      cfa401e388d78e5df25de0e88a728cbe87e8256c665c975716a46a62c039f73f

    • SHA512

      53ebead01cf89f2d5364100c53769332deb3b6bcbda153e0c2517d48dd0b327889e846b13996daa6308ee57be1c4dbfb24f531f214d322230c8ab3b6979a1b81

    • SSDEEP

      6144:YnhF/lqEwRXUPzi9sgiZo4nG6Wp39Ezb7ITsqXigaXwVfi:ohF/lN/z+wDnVimP7R

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks