General

  • Target

    27c1bc289f2467b3d821ce33ca1326294359411763979f32eabec00b7522e417

  • Size

    297KB

  • Sample

    241108-nrxc2a1gnf

  • MD5

    3fbed42178efbbff9ea1d26f79cf69fe

  • SHA1

    874184b55e905fa8318c9f66377310aab36a2946

  • SHA256

    27c1bc289f2467b3d821ce33ca1326294359411763979f32eabec00b7522e417

  • SHA512

    26b2d65f7ae525051c80eeb2d3e9311a6811a0e9e0f9d43b598da2b9f729536876199da9b4ae3e8ab5ec8ed98bdb4822067fb448a7105295bb7fb8d3c8fede14

  • SSDEEP

    6144:UvHwCMbovF9JUKbHGTRfcfX1m3fbGKUBjcFPx76COzuS92:UPwCMbovF9JUKrGTRVCKajcfgzu

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      27c1bc289f2467b3d821ce33ca1326294359411763979f32eabec00b7522e417

    • Size

      297KB

    • MD5

      3fbed42178efbbff9ea1d26f79cf69fe

    • SHA1

      874184b55e905fa8318c9f66377310aab36a2946

    • SHA256

      27c1bc289f2467b3d821ce33ca1326294359411763979f32eabec00b7522e417

    • SHA512

      26b2d65f7ae525051c80eeb2d3e9311a6811a0e9e0f9d43b598da2b9f729536876199da9b4ae3e8ab5ec8ed98bdb4822067fb448a7105295bb7fb8d3c8fede14

    • SSDEEP

      6144:UvHwCMbovF9JUKbHGTRfcfX1m3fbGKUBjcFPx76COzuS92:UPwCMbovF9JUKrGTRVCKajcfgzu

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks