General

  • Target

    5e155e1e612843d63f775b5620b57ef9ec6a12c8da68c0bdff19568a8c87841b

  • Size

    297KB

  • Sample

    241108-smhfjavbjg

  • MD5

    6cbf5ea99b10e144495bede880dff93a

  • SHA1

    96baba40327c8dab1db05c3891abde0eda520d2b

  • SHA256

    5e155e1e612843d63f775b5620b57ef9ec6a12c8da68c0bdff19568a8c87841b

  • SHA512

    1b7db268c204161e91fb5d8aa280f396c72f7a5d185b631fec6a87a24b7f6b2fac9759c03b312bebb5c5788ed21fd71da630b8eeb898d14b05842a7410f83b41

  • SSDEEP

    6144:bHX+iXvoPGKN3MYAXcK6YWo2mYLVe2PRy6u802JJs:b3+iXvoPoYISTLVHZy6zJ

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      5e155e1e612843d63f775b5620b57ef9ec6a12c8da68c0bdff19568a8c87841b

    • Size

      297KB

    • MD5

      6cbf5ea99b10e144495bede880dff93a

    • SHA1

      96baba40327c8dab1db05c3891abde0eda520d2b

    • SHA256

      5e155e1e612843d63f775b5620b57ef9ec6a12c8da68c0bdff19568a8c87841b

    • SHA512

      1b7db268c204161e91fb5d8aa280f396c72f7a5d185b631fec6a87a24b7f6b2fac9759c03b312bebb5c5788ed21fd71da630b8eeb898d14b05842a7410f83b41

    • SSDEEP

      6144:bHX+iXvoPGKN3MYAXcK6YWo2mYLVe2PRy6u802JJs:b3+iXvoPoYISTLVHZy6zJ

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks