General

  • Target

    ea82b066c5d86fee7aef79110b6e72f6d3c30511442622154659aa512e059fa6

  • Size

    298KB

  • Sample

    241108-ksww4szdjj

  • MD5

    54e9f58e3fbb4a091d52fb8ee493729c

  • SHA1

    398fb4c874d74c5cf7e0bd6efdd65a48ba77983b

  • SHA256

    ea82b066c5d86fee7aef79110b6e72f6d3c30511442622154659aa512e059fa6

  • SHA512

    978e890fb597b5ee2ab760604c9dc7d5c171f2ab0aaede0e6ab9859294221fedd5a0ae0f6d7183a72276500f3cad1ba24e6d30ce15c5aafb480634463e618b84

  • SSDEEP

    6144:52ECIjjW+LuLIe0T1eXwp8bXk3X4G1cmL2Gp2eT:5FCIjjW6vTHcmLxAe

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      ea82b066c5d86fee7aef79110b6e72f6d3c30511442622154659aa512e059fa6

    • Size

      298KB

    • MD5

      54e9f58e3fbb4a091d52fb8ee493729c

    • SHA1

      398fb4c874d74c5cf7e0bd6efdd65a48ba77983b

    • SHA256

      ea82b066c5d86fee7aef79110b6e72f6d3c30511442622154659aa512e059fa6

    • SHA512

      978e890fb597b5ee2ab760604c9dc7d5c171f2ab0aaede0e6ab9859294221fedd5a0ae0f6d7183a72276500f3cad1ba24e6d30ce15c5aafb480634463e618b84

    • SSDEEP

      6144:52ECIjjW+LuLIe0T1eXwp8bXk3X4G1cmL2Gp2eT:5FCIjjW6vTHcmLxAe

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks