General

  • Target

    90e1e83ffb4dc3b009ddcb41345a1b012f3b903aea317f69177e66424c4c5a6c

  • Size

    371KB

  • Sample

    241108-kasfzazamk

  • MD5

    b7550b8d76ce19b593cf31b81956444e

  • SHA1

    d0acffa2ff12d2ad70c712a75d305a55bc9081e0

  • SHA256

    90e1e83ffb4dc3b009ddcb41345a1b012f3b903aea317f69177e66424c4c5a6c

  • SHA512

    25ef2696898a5bdbda5f99a16b3235b000509fed33ed6e5829398d4991cf23e80099459e85d08dd8892bc1fa703d57172f13f2dd2f275922c2a95bd6f786ccb1

  • SSDEEP

    6144:K5T6cP+DC7WJrK3tg4LobitExnGRZyodb7ITsqXigaXwVfh:K5T6cEKWJMW7GR5h7R

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      90e1e83ffb4dc3b009ddcb41345a1b012f3b903aea317f69177e66424c4c5a6c

    • Size

      371KB

    • MD5

      b7550b8d76ce19b593cf31b81956444e

    • SHA1

      d0acffa2ff12d2ad70c712a75d305a55bc9081e0

    • SHA256

      90e1e83ffb4dc3b009ddcb41345a1b012f3b903aea317f69177e66424c4c5a6c

    • SHA512

      25ef2696898a5bdbda5f99a16b3235b000509fed33ed6e5829398d4991cf23e80099459e85d08dd8892bc1fa703d57172f13f2dd2f275922c2a95bd6f786ccb1

    • SSDEEP

      6144:K5T6cP+DC7WJrK3tg4LobitExnGRZyodb7ITsqXigaXwVfh:K5T6cEKWJMW7GR5h7R

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks