General

  • Target

    5ebfade46aac21d35cf318b5060bc85016d630c6baa094596f3ac2d186e00777

  • Size

    371KB

  • Sample

    241108-pmlw6svlfp

  • MD5

    40850818539f6edb99b987b90beb29b7

  • SHA1

    6d077aada890235a7d0f742e830f99e130b72aa6

  • SHA256

    5ebfade46aac21d35cf318b5060bc85016d630c6baa094596f3ac2d186e00777

  • SHA512

    04d742966dac3a4d4379bae046253b73546899061c71b34604006a1364ff9c76c45f782b524234e9609a933ca17837a9d4bc516a8c680912e765a36a8eeddbe5

  • SSDEEP

    6144:I1c95HIATYxl4z3GTkAe0YnGDw2IKcO/w+XiILU6dqb7ITsqXigaXwVfi:I1c95H7TYrCYkAepCw2oOI4kL7R

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      5ebfade46aac21d35cf318b5060bc85016d630c6baa094596f3ac2d186e00777

    • Size

      371KB

    • MD5

      40850818539f6edb99b987b90beb29b7

    • SHA1

      6d077aada890235a7d0f742e830f99e130b72aa6

    • SHA256

      5ebfade46aac21d35cf318b5060bc85016d630c6baa094596f3ac2d186e00777

    • SHA512

      04d742966dac3a4d4379bae046253b73546899061c71b34604006a1364ff9c76c45f782b524234e9609a933ca17837a9d4bc516a8c680912e765a36a8eeddbe5

    • SSDEEP

      6144:I1c95HIATYxl4z3GTkAe0YnGDw2IKcO/w+XiILU6dqb7ITsqXigaXwVfi:I1c95H7TYrCYkAepCw2oOI4kL7R

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks