General

  • Target

    727913dcd867eac6c7dafc4f452dac777fede52407acd0132149f091e300256b

  • Size

    273KB

  • Sample

    241108-lpyrzasnfq

  • MD5

    365e701f943cf90a1299b25ae4bdf194

  • SHA1

    bc1faff197081c79fae499dcecd7b8c5044e3de0

  • SHA256

    727913dcd867eac6c7dafc4f452dac777fede52407acd0132149f091e300256b

  • SHA512

    a76facc323086e25968d7f65b70e774651778e2327ecdb081660aa47c1e3786c6c1de3a78f72fda0e1ef5b67db77a5a9c9ef39849515e4f4c18f39687effe767

  • SSDEEP

    6144:ppXL09yoFML3jGXA8DHiKbCzM1OWXz89yUs46ntHyrst2B:HXayoFcKTfUKY96VnFgst2

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      727913dcd867eac6c7dafc4f452dac777fede52407acd0132149f091e300256b

    • Size

      273KB

    • MD5

      365e701f943cf90a1299b25ae4bdf194

    • SHA1

      bc1faff197081c79fae499dcecd7b8c5044e3de0

    • SHA256

      727913dcd867eac6c7dafc4f452dac777fede52407acd0132149f091e300256b

    • SHA512

      a76facc323086e25968d7f65b70e774651778e2327ecdb081660aa47c1e3786c6c1de3a78f72fda0e1ef5b67db77a5a9c9ef39849515e4f4c18f39687effe767

    • SSDEEP

      6144:ppXL09yoFML3jGXA8DHiKbCzM1OWXz89yUs46ntHyrst2B:HXayoFcKTfUKY96VnFgst2

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks