General

  • Target

    2c220a5de5d2e9b59134d199dff7aa148b7d1f2824751b058a83d0baa2775162

  • Size

    1.2MB

  • Sample

    241109-mge6bssjav

  • MD5

    7b386aec3199dc179b58618d52ce8243

  • SHA1

    5ff9d725d2337291cd5cd61a73a14cab869fef04

  • SHA256

    2c220a5de5d2e9b59134d199dff7aa148b7d1f2824751b058a83d0baa2775162

  • SHA512

    a6b59ccdb821a5792f64d42a752165488d0038dd313c9f19c4b9f3b23e34206cd3a4a88117447e21dfab779603076b0e9ff17b85be872d32b01f7e8f11731cc9

  • SSDEEP

    24576:Jy8T338/gM5jgKHzC9lUzPWFOu1fxwYMCB8n76S3wSHsNQh:88T3MIMRgUzYezPy91foCB8naSHsNQ

Malware Config

Targets

    • Target

      2c220a5de5d2e9b59134d199dff7aa148b7d1f2824751b058a83d0baa2775162

    • Size

      1.2MB

    • MD5

      7b386aec3199dc179b58618d52ce8243

    • SHA1

      5ff9d725d2337291cd5cd61a73a14cab869fef04

    • SHA256

      2c220a5de5d2e9b59134d199dff7aa148b7d1f2824751b058a83d0baa2775162

    • SHA512

      a6b59ccdb821a5792f64d42a752165488d0038dd313c9f19c4b9f3b23e34206cd3a4a88117447e21dfab779603076b0e9ff17b85be872d32b01f7e8f11731cc9

    • SSDEEP

      24576:Jy8T338/gM5jgKHzC9lUzPWFOu1fxwYMCB8n76S3wSHsNQh:88T3MIMRgUzYezPy91foCB8naSHsNQ

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

    • Executes dropped EXE

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks