General

  • Target

    2a762c46aa22cdd3432735399ffcb6e17b24bbc83260fa287841ee389ffdce3a

  • Size

    298KB

  • Sample

    241108-m8swhazqcw

  • MD5

    fdce1acf17237ef27b071d8835edd8c3

  • SHA1

    f9e897ef367abc54fe442b3518bb924951945150

  • SHA256

    2a762c46aa22cdd3432735399ffcb6e17b24bbc83260fa287841ee389ffdce3a

  • SHA512

    f9ec3942db855990a5da4b39182ac4403b1829d5c451827a7351e8a7f6844c835bb108ad3c302705dedd450ca3f5b8d29103c61244b76ab7533d8926fb56fe16

  • SSDEEP

    6144:52ECIjjW+LuLIe0T1eXwp8bXk3X4G1cmL2Gp2eT:5FCIjjW6vTHcmLxAe

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      2a762c46aa22cdd3432735399ffcb6e17b24bbc83260fa287841ee389ffdce3a

    • Size

      298KB

    • MD5

      fdce1acf17237ef27b071d8835edd8c3

    • SHA1

      f9e897ef367abc54fe442b3518bb924951945150

    • SHA256

      2a762c46aa22cdd3432735399ffcb6e17b24bbc83260fa287841ee389ffdce3a

    • SHA512

      f9ec3942db855990a5da4b39182ac4403b1829d5c451827a7351e8a7f6844c835bb108ad3c302705dedd450ca3f5b8d29103c61244b76ab7533d8926fb56fe16

    • SSDEEP

      6144:52ECIjjW+LuLIe0T1eXwp8bXk3X4G1cmL2Gp2eT:5FCIjjW6vTHcmLxAe

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks