General

  • Target

    7c08f25874e681612267ba06d9b41b1d020d952012c163bca3a4b60fb426dce2

  • Size

    445KB

  • Sample

    241109-1rxp1stbkk

  • MD5

    3bcef97a8f4512830a74f592758331cd

  • SHA1

    a67c3e9563b817d99b41f07f9d91293a4879ad37

  • SHA256

    7c08f25874e681612267ba06d9b41b1d020d952012c163bca3a4b60fb426dce2

  • SHA512

    7d09cc77c8605c056638728fef214d41c08749ba5d3ad615a5a4ab9e52a1895162179062c7d8ab87442b88387d252b1694e3c5ab1a02c1a6a922fd6b9bbd25e5

  • SSDEEP

    6144:jzdQcuKrRosANpXrZMJ2jIT2LfiXhJf1tSdf90LblwNP3zlUR5/+6lQKR:tQ70i9MJ+LfiDdER2LblUP3JUR5/rP

Malware Config

Extracted

Family

redline

Botnet

ww

C2

45.9.20.168:46257

Attributes
  • auth_value

    5a1b28ccd05953f5c3f99729c12427cc

Targets

    • Target

      7c08f25874e681612267ba06d9b41b1d020d952012c163bca3a4b60fb426dce2

    • Size

      445KB

    • MD5

      3bcef97a8f4512830a74f592758331cd

    • SHA1

      a67c3e9563b817d99b41f07f9d91293a4879ad37

    • SHA256

      7c08f25874e681612267ba06d9b41b1d020d952012c163bca3a4b60fb426dce2

    • SHA512

      7d09cc77c8605c056638728fef214d41c08749ba5d3ad615a5a4ab9e52a1895162179062c7d8ab87442b88387d252b1694e3c5ab1a02c1a6a922fd6b9bbd25e5

    • SSDEEP

      6144:jzdQcuKrRosANpXrZMJ2jIT2LfiXhJf1tSdf90LblwNP3zlUR5/+6lQKR:tQ70i9MJ+LfiDdER2LblUP3JUR5/rP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks