General

  • Target

    8a54b092ecb7189af27026fb3bf8277573552c8de006464eafd9076d3fc545ef

  • Size

    371KB

  • Sample

    241108-q44c8atckg

  • MD5

    252567e1cdad2d802d100ef751dc1b47

  • SHA1

    0c55f4f83a97f29d7a818e985856a895f9e704da

  • SHA256

    8a54b092ecb7189af27026fb3bf8277573552c8de006464eafd9076d3fc545ef

  • SHA512

    b109a2608bca2dc6189ae961cabbc3986068c2ed605c02c598c325d3a8fe8139aafd072779f2cc9e90846428918acccd575db71eb80b8538911841bbd1ee5c23

  • SSDEEP

    6144:K5T6cP+DC7WJrK3tg4LobitExnGRZyodb7ITsqXigaXwVfh:K5T6cEKWJMW7GR5h7R

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      8a54b092ecb7189af27026fb3bf8277573552c8de006464eafd9076d3fc545ef

    • Size

      371KB

    • MD5

      252567e1cdad2d802d100ef751dc1b47

    • SHA1

      0c55f4f83a97f29d7a818e985856a895f9e704da

    • SHA256

      8a54b092ecb7189af27026fb3bf8277573552c8de006464eafd9076d3fc545ef

    • SHA512

      b109a2608bca2dc6189ae961cabbc3986068c2ed605c02c598c325d3a8fe8139aafd072779f2cc9e90846428918acccd575db71eb80b8538911841bbd1ee5c23

    • SSDEEP

      6144:K5T6cP+DC7WJrK3tg4LobitExnGRZyodb7ITsqXigaXwVfh:K5T6cEKWJMW7GR5h7R

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks