General

  • Target

    439efe4eed5da7653f7663adf238e835b01cae5beb319ea0d742972d91f0435e

  • Size

    445KB

  • Sample

    241109-1ejmma1rht

  • MD5

    622bc77720d1a1a377110501d40ab80f

  • SHA1

    8870ed58850524ac9ed5a622ad6a90a9229cc853

  • SHA256

    439efe4eed5da7653f7663adf238e835b01cae5beb319ea0d742972d91f0435e

  • SHA512

    91865445f5ac988acee25d5776b1c9fdaefb5654ee37ca10cd84ca5774fd84deea9c47210218448faebf768a47972aa6f5be453ed25d481e71c953399174a69a

  • SSDEEP

    6144:Kl0lqPY5O5kTt6196AvXlyQFSWXLGIz78B/0h5chg+rQWKO:FlFO5A6eAflyQdXLGIzoB/s5chgf

Malware Config

Extracted

Family

redline

Botnet

ww

C2

45.9.20.168:46257

Attributes
  • auth_value

    5a1b28ccd05953f5c3f99729c12427cc

Targets

    • Target

      439efe4eed5da7653f7663adf238e835b01cae5beb319ea0d742972d91f0435e

    • Size

      445KB

    • MD5

      622bc77720d1a1a377110501d40ab80f

    • SHA1

      8870ed58850524ac9ed5a622ad6a90a9229cc853

    • SHA256

      439efe4eed5da7653f7663adf238e835b01cae5beb319ea0d742972d91f0435e

    • SHA512

      91865445f5ac988acee25d5776b1c9fdaefb5654ee37ca10cd84ca5774fd84deea9c47210218448faebf768a47972aa6f5be453ed25d481e71c953399174a69a

    • SSDEEP

      6144:Kl0lqPY5O5kTt6196AvXlyQFSWXLGIz78B/0h5chg+rQWKO:FlFO5A6eAflyQdXLGIzoB/s5chgf

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks