General

  • Target

    bca3599780e2dd7154190b555fecf6b40f15da0f4fe294f8341b64a9b74ff44d

  • Size

    297KB

  • Sample

    241108-htnwsaxhkg

  • MD5

    03e2c39c6550fef1af2865353b414435

  • SHA1

    6ad3d54d0d7a80070e8b69e459cea1aea8b541ff

  • SHA256

    bca3599780e2dd7154190b555fecf6b40f15da0f4fe294f8341b64a9b74ff44d

  • SHA512

    e57c880eaebb14fa44e12e6cd59719d8cf6ca199ace6181745239524dd9d50f2ba5cef57aede37a3edfd39f5ca1a12b6c9be1c5912d8c1a229e3229e993ed008

  • SSDEEP

    6144:bvzGiXPoPRvZzhR9WEjQJIud9k70st5J0c8f0wPIQJ:bLGiXPoPRxYEjQJIudS0SJ0c8f0wP

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      bca3599780e2dd7154190b555fecf6b40f15da0f4fe294f8341b64a9b74ff44d

    • Size

      297KB

    • MD5

      03e2c39c6550fef1af2865353b414435

    • SHA1

      6ad3d54d0d7a80070e8b69e459cea1aea8b541ff

    • SHA256

      bca3599780e2dd7154190b555fecf6b40f15da0f4fe294f8341b64a9b74ff44d

    • SHA512

      e57c880eaebb14fa44e12e6cd59719d8cf6ca199ace6181745239524dd9d50f2ba5cef57aede37a3edfd39f5ca1a12b6c9be1c5912d8c1a229e3229e993ed008

    • SSDEEP

      6144:bvzGiXPoPRvZzhR9WEjQJIud9k70st5J0c8f0wPIQJ:bLGiXPoPRxYEjQJIudS0SJ0c8f0wP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks