General

  • Target

    83cfc8a21903987dfb328b0acd521ce18ff5d72575d082255129a8d6fdd0f8f8

  • Size

    273KB

  • Sample

    241108-km41jazckj

  • MD5

    7307facda665ec0e30db6638029db54c

  • SHA1

    0e3822a9fa19d6160f7a407b7ed6ea9585fcc96e

  • SHA256

    83cfc8a21903987dfb328b0acd521ce18ff5d72575d082255129a8d6fdd0f8f8

  • SHA512

    4413521d5a1fab6cde12ba87bdc0a59fc6a0542469f1acc1451d9995571e25cd877f41d8ca9aaeffeee6ca0c93665fe306cbaab3a3f520cce961fa3dda303114

  • SSDEEP

    6144:cEdqL9Tqlb3UwB7AYmFMz3LeJOyPXXUJWyRveB9W9JrB:fqJTqlbEMMYmW3A9vUJWyRW67

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      83cfc8a21903987dfb328b0acd521ce18ff5d72575d082255129a8d6fdd0f8f8

    • Size

      273KB

    • MD5

      7307facda665ec0e30db6638029db54c

    • SHA1

      0e3822a9fa19d6160f7a407b7ed6ea9585fcc96e

    • SHA256

      83cfc8a21903987dfb328b0acd521ce18ff5d72575d082255129a8d6fdd0f8f8

    • SHA512

      4413521d5a1fab6cde12ba87bdc0a59fc6a0542469f1acc1451d9995571e25cd877f41d8ca9aaeffeee6ca0c93665fe306cbaab3a3f520cce961fa3dda303114

    • SSDEEP

      6144:cEdqL9Tqlb3UwB7AYmFMz3LeJOyPXXUJWyRveB9W9JrB:fqJTqlbEMMYmW3A9vUJWyRW67

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks