General

  • Target

    57a1d1983fdaf833301163b987221db4d4e47105bb6c3b599216e9ebbe318470

  • Size

    383KB

  • Sample

    241108-hyjgvsxhpg

  • MD5

    4fc07a640dc5261531e243334484ed1b

  • SHA1

    a44bf7c119cc44f0bcc14337a70b6f50c66f9730

  • SHA256

    57a1d1983fdaf833301163b987221db4d4e47105bb6c3b599216e9ebbe318470

  • SHA512

    18a9bb86ed3018daf938e34716905c1eec9aa4c9c2072822ec1473691ecf4aa006ba2f9127c19e118b4653a3b0f5e4bbc48bc7358b6543ea2cca2d8624c28ddd

  • SSDEEP

    6144:ANaJ3TPjifAJdT1HhGB35wOx6irIvIG6PDdmXb7ITsqXigaXwVfZ:+eTbMAJdxsXx6Dv4dk7R

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      57a1d1983fdaf833301163b987221db4d4e47105bb6c3b599216e9ebbe318470

    • Size

      383KB

    • MD5

      4fc07a640dc5261531e243334484ed1b

    • SHA1

      a44bf7c119cc44f0bcc14337a70b6f50c66f9730

    • SHA256

      57a1d1983fdaf833301163b987221db4d4e47105bb6c3b599216e9ebbe318470

    • SHA512

      18a9bb86ed3018daf938e34716905c1eec9aa4c9c2072822ec1473691ecf4aa006ba2f9127c19e118b4653a3b0f5e4bbc48bc7358b6543ea2cca2d8624c28ddd

    • SSDEEP

      6144:ANaJ3TPjifAJdT1HhGB35wOx6irIvIG6PDdmXb7ITsqXigaXwVfZ:+eTbMAJdxsXx6Dv4dk7R

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks