General

  • Target

    be96ff083d5ae6dc3dd100ff70535bc963d221e0bd49a0372f31549d1aa23d68

  • Size

    712KB

  • Sample

    241109-m4gyfatbkc

  • MD5

    a878864357901c3158dd9b65b9b1ecec

  • SHA1

    f8d7a94965d1455eebe94b99ab6c4915e4dca779

  • SHA256

    be96ff083d5ae6dc3dd100ff70535bc963d221e0bd49a0372f31549d1aa23d68

  • SHA512

    23a1f32b7c14dacc6845c8fa136b9a3ebac20064339b4ccfadf74799bc685a80e19300259e12ea2722e5867bc270036ea1f4998ddd795c74cb139f69e782a59a

  • SSDEEP

    12288:OMrBy90K9ArfPWipnhVlUu4m8qdl1zcgmvS2a338jHf50VEPK2V8CQH4PXSs:fyN9wdnhku4m/VRaNKu+YKs

Malware Config

Targets

    • Target

      be96ff083d5ae6dc3dd100ff70535bc963d221e0bd49a0372f31549d1aa23d68

    • Size

      712KB

    • MD5

      a878864357901c3158dd9b65b9b1ecec

    • SHA1

      f8d7a94965d1455eebe94b99ab6c4915e4dca779

    • SHA256

      be96ff083d5ae6dc3dd100ff70535bc963d221e0bd49a0372f31549d1aa23d68

    • SHA512

      23a1f32b7c14dacc6845c8fa136b9a3ebac20064339b4ccfadf74799bc685a80e19300259e12ea2722e5867bc270036ea1f4998ddd795c74cb139f69e782a59a

    • SSDEEP

      12288:OMrBy90K9ArfPWipnhVlUu4m8qdl1zcgmvS2a338jHf50VEPK2V8CQH4PXSs:fyN9wdnhku4m/VRaNKu+YKs

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

    • Executes dropped EXE

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks