General

  • Target

    f42b62f35f5f6910a8d7f4a811316320a1b5735d04e02d9a1907b808f8b7f289

  • Size

    297KB

  • Sample

    241108-l8p9ya1aqa

  • MD5

    15fe35bf537cdafb181b82403a600149

  • SHA1

    a1388a2cf29a5ee57451dd4bfcf77594cdcfebdc

  • SHA256

    f42b62f35f5f6910a8d7f4a811316320a1b5735d04e02d9a1907b808f8b7f289

  • SHA512

    bc8307c8c21012e144f3e488c640e8964df455ef3d4dc5d0280d2390246fdb0e8d12f8d8fb7c8c975d07c67c64bbc8f1d2c7a0cf745f87422b223760991228d7

  • SSDEEP

    6144:UvHwCMbovF9JUKbHGTRfcfX1m3fbGKUBjcFPx76COzuS92:UPwCMbovF9JUKrGTRVCKajcfgzu

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      f42b62f35f5f6910a8d7f4a811316320a1b5735d04e02d9a1907b808f8b7f289

    • Size

      297KB

    • MD5

      15fe35bf537cdafb181b82403a600149

    • SHA1

      a1388a2cf29a5ee57451dd4bfcf77594cdcfebdc

    • SHA256

      f42b62f35f5f6910a8d7f4a811316320a1b5735d04e02d9a1907b808f8b7f289

    • SHA512

      bc8307c8c21012e144f3e488c640e8964df455ef3d4dc5d0280d2390246fdb0e8d12f8d8fb7c8c975d07c67c64bbc8f1d2c7a0cf745f87422b223760991228d7

    • SSDEEP

      6144:UvHwCMbovF9JUKbHGTRfcfX1m3fbGKUBjcFPx76COzuS92:UPwCMbovF9JUKrGTRVCKajcfgzu

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks