General

  • Target

    dfbd9f7d0bcb4f69a9722ccf359621090c2451ce69940769b56e7f9ac70d0141

  • Size

    423KB

  • Sample

    241108-mcswmatjaq

  • MD5

    e00b475df529766b38ba366c26fa5312

  • SHA1

    f7835a24c74315be15bc71efca3b919cc16e69ea

  • SHA256

    dfbd9f7d0bcb4f69a9722ccf359621090c2451ce69940769b56e7f9ac70d0141

  • SHA512

    aaef8611d8769545e05f318f4ee08ed35a6ea9cfad9dcbe9f0b19aed94a761bf9c3ea5d4c17aeedb6898631800e803ae87c0787f6267e754dfb8a8280a9d7b4b

  • SSDEEP

    6144:zKfV9DPD5ZU4u3ea/vVYSyW9Jhh4V1EzUhLkYFdk4elBPhSfai:zmVxb5a4u3eI2Sy/V1EzUhLkielBPD

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      dfbd9f7d0bcb4f69a9722ccf359621090c2451ce69940769b56e7f9ac70d0141

    • Size

      423KB

    • MD5

      e00b475df529766b38ba366c26fa5312

    • SHA1

      f7835a24c74315be15bc71efca3b919cc16e69ea

    • SHA256

      dfbd9f7d0bcb4f69a9722ccf359621090c2451ce69940769b56e7f9ac70d0141

    • SHA512

      aaef8611d8769545e05f318f4ee08ed35a6ea9cfad9dcbe9f0b19aed94a761bf9c3ea5d4c17aeedb6898631800e803ae87c0787f6267e754dfb8a8280a9d7b4b

    • SSDEEP

      6144:zKfV9DPD5ZU4u3ea/vVYSyW9Jhh4V1EzUhLkYFdk4elBPhSfai:zmVxb5a4u3eI2Sy/V1EzUhLkielBPD

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks