General

  • Target

    11eb3d03436d47ac12d97ce46362ef930422108588dc9d92513da6635f39d624

  • Size

    428KB

  • Sample

    241108-p6s5lasgmm

  • MD5

    ed1a854aeda6bdda8019162ff66402ca

  • SHA1

    485803b8ccde8226725a10677d3a8947989391ac

  • SHA256

    11eb3d03436d47ac12d97ce46362ef930422108588dc9d92513da6635f39d624

  • SHA512

    d59c527d1a23f1a93df1c36ab01e845bb9aa4f9732d40be2e6a22a29581aedb92253cc9650dc88a7ede185a954f5119a661791b0ed4e434b3346aa8bb6d08f00

  • SSDEEP

    6144:HheiEHjdNxQbjcTIldEfxcLD0XN6uVQF5em6jozUXwO4i7hAX3oYjGmSp/w:HXU5GwBcLDIgBUXwO4i7hATjGm/

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      11eb3d03436d47ac12d97ce46362ef930422108588dc9d92513da6635f39d624

    • Size

      428KB

    • MD5

      ed1a854aeda6bdda8019162ff66402ca

    • SHA1

      485803b8ccde8226725a10677d3a8947989391ac

    • SHA256

      11eb3d03436d47ac12d97ce46362ef930422108588dc9d92513da6635f39d624

    • SHA512

      d59c527d1a23f1a93df1c36ab01e845bb9aa4f9732d40be2e6a22a29581aedb92253cc9650dc88a7ede185a954f5119a661791b0ed4e434b3346aa8bb6d08f00

    • SSDEEP

      6144:HheiEHjdNxQbjcTIldEfxcLD0XN6uVQF5em6jozUXwO4i7hAX3oYjGmSp/w:HXU5GwBcLDIgBUXwO4i7hATjGm/

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks