General

  • Target

    ecea366d5ed9fff283c182aa094809e9231e434027d09633af225d8a2e975741

  • Size

    273KB

  • Sample

    241108-g3vj9awphw

  • MD5

    354ab9a62c101a90e402639a0fcb1dc0

  • SHA1

    bbdd8780c877103a952da7e442bf74a990345b72

  • SHA256

    ecea366d5ed9fff283c182aa094809e9231e434027d09633af225d8a2e975741

  • SHA512

    e2cc754f45db07814b8802814d6a75effe4cd9f935fa9cbf7035ee39d830a4f4f593ba94b943f0a0c1e00f9c4df03e44a88766145e5937818ac9d5b2ff34c890

  • SSDEEP

    6144:j8qL1OPq9S9LzZB4z16XgrVVED7jgxr23r3VwGB:oqcPq9S1ZB4z1+grAD3gxib9

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      ecea366d5ed9fff283c182aa094809e9231e434027d09633af225d8a2e975741

    • Size

      273KB

    • MD5

      354ab9a62c101a90e402639a0fcb1dc0

    • SHA1

      bbdd8780c877103a952da7e442bf74a990345b72

    • SHA256

      ecea366d5ed9fff283c182aa094809e9231e434027d09633af225d8a2e975741

    • SHA512

      e2cc754f45db07814b8802814d6a75effe4cd9f935fa9cbf7035ee39d830a4f4f593ba94b943f0a0c1e00f9c4df03e44a88766145e5937818ac9d5b2ff34c890

    • SSDEEP

      6144:j8qL1OPq9S9LzZB4z16XgrVVED7jgxr23r3VwGB:oqcPq9S1ZB4z1+grAD3gxib9

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks