General

  • Target

    8a4a9438273111acc78b5d7edea65513ead049aa53dcc94410b7bd06dbdae3bb

  • Size

    434KB

  • Sample

    241108-jnzxja1lbm

  • MD5

    2353f84cb3de80cb9711106b44682897

  • SHA1

    e5686450846f2ce1a98de810b4bd5e405d0e02e2

  • SHA256

    8a4a9438273111acc78b5d7edea65513ead049aa53dcc94410b7bd06dbdae3bb

  • SHA512

    78502b3a1a67c69fc6d06f9cfdea04beeeee62097fff0fb7406d760b6010925b8c383e3c0fdd864ea02a381e0ec23649e1e9c4b857a8b089c473553c0b643b22

  • SSDEEP

    6144:z6b0HLLvfYOGa7hFs+TMrSwRoSIPbYVMoNr/psoF3736O1GdkT3TBNht:b6avJMvoS6bgMoNr/psoFr36O+kT3F

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      8a4a9438273111acc78b5d7edea65513ead049aa53dcc94410b7bd06dbdae3bb

    • Size

      434KB

    • MD5

      2353f84cb3de80cb9711106b44682897

    • SHA1

      e5686450846f2ce1a98de810b4bd5e405d0e02e2

    • SHA256

      8a4a9438273111acc78b5d7edea65513ead049aa53dcc94410b7bd06dbdae3bb

    • SHA512

      78502b3a1a67c69fc6d06f9cfdea04beeeee62097fff0fb7406d760b6010925b8c383e3c0fdd864ea02a381e0ec23649e1e9c4b857a8b089c473553c0b643b22

    • SSDEEP

      6144:z6b0HLLvfYOGa7hFs+TMrSwRoSIPbYVMoNr/psoF3736O1GdkT3TBNht:b6avJMvoS6bgMoNr/psoFr36O+kT3F

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks