General

  • Target

    ffde4626ce4ac02163f23a48a8f291a6096d9b8fce5cfc11c05c878f4af4842b

  • Size

    423KB

  • Sample

    241108-nkfrpstpaq

  • MD5

    113f56f84f95f3014bcd3c4b24bc94c4

  • SHA1

    cdd0b19ce572452b7ed793fe08e4ae882930909c

  • SHA256

    ffde4626ce4ac02163f23a48a8f291a6096d9b8fce5cfc11c05c878f4af4842b

  • SHA512

    9580a5571e015f9706c3339575adda28b89514e52de2e858f271cfc989a13f358a7a14c9d5396f6c20ec25c3561eccf2a494e0a6d89e2cd70acb3e72b9b81253

  • SSDEEP

    12288:u4rXu0OVUf2Au746adZtIzkNDtZuFM9bT6f+N:1lOG2tJ89tMUI+

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      ffde4626ce4ac02163f23a48a8f291a6096d9b8fce5cfc11c05c878f4af4842b

    • Size

      423KB

    • MD5

      113f56f84f95f3014bcd3c4b24bc94c4

    • SHA1

      cdd0b19ce572452b7ed793fe08e4ae882930909c

    • SHA256

      ffde4626ce4ac02163f23a48a8f291a6096d9b8fce5cfc11c05c878f4af4842b

    • SHA512

      9580a5571e015f9706c3339575adda28b89514e52de2e858f271cfc989a13f358a7a14c9d5396f6c20ec25c3561eccf2a494e0a6d89e2cd70acb3e72b9b81253

    • SSDEEP

      12288:u4rXu0OVUf2Au746adZtIzkNDtZuFM9bT6f+N:1lOG2tJ89tMUI+

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.