General

  • Target

    1aa84bbb3815156c0a15ec1f9ec0261d157d818b73fdda1857530d96ee9ac11c

  • Size

    423KB

  • Sample

    241108-mvzrws1dkc

  • MD5

    25b09371954419510956b652f919ab8c

  • SHA1

    6105a7f7544d597323bf334520b7f40efff00d07

  • SHA256

    1aa84bbb3815156c0a15ec1f9ec0261d157d818b73fdda1857530d96ee9ac11c

  • SHA512

    ad91e55ee9e4f980a5385f6385abf27ee6319905a1bf3ca34a04ba93504b64cfb259bcd59d93175b86742ed9e91c9c138d88adef9bdd3f0032a5b0c74aa43311

  • SSDEEP

    6144:lF0QwcHpDxNC/vcfL4r/7Rvyx2BOxZWpWmYgwzOdrePY5hfm:lG0xEiErD1YNxZWpWmYwdreP5

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      1aa84bbb3815156c0a15ec1f9ec0261d157d818b73fdda1857530d96ee9ac11c

    • Size

      423KB

    • MD5

      25b09371954419510956b652f919ab8c

    • SHA1

      6105a7f7544d597323bf334520b7f40efff00d07

    • SHA256

      1aa84bbb3815156c0a15ec1f9ec0261d157d818b73fdda1857530d96ee9ac11c

    • SHA512

      ad91e55ee9e4f980a5385f6385abf27ee6319905a1bf3ca34a04ba93504b64cfb259bcd59d93175b86742ed9e91c9c138d88adef9bdd3f0032a5b0c74aa43311

    • SSDEEP

      6144:lF0QwcHpDxNC/vcfL4r/7Rvyx2BOxZWpWmYgwzOdrePY5hfm:lG0xEiErD1YNxZWpWmYwdreP5

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks