General

  • Target

    b32575555c416963cfac86e833666fe197e4a2735fed5ded32400b0101d626eb

  • Size

    394KB

  • Sample

    241109-mz5hyaskh1

  • MD5

    faa7056e968e1949e6a946b000347acd

  • SHA1

    21fbb82d372ea90957dc6d0822329040e625d8c7

  • SHA256

    b32575555c416963cfac86e833666fe197e4a2735fed5ded32400b0101d626eb

  • SHA512

    4237f19fd06530767dad4f03ec48adbf7f7abfeed2d4700e41a37d06f2944a7dbb3043a0609f7649d8e8c5c89024333436fb07f680d49060aa3bd3e6eeb2e4ac

  • SSDEEP

    6144:GxoNKwSw+rWubZ+Qq3jye8WNI+hgGf/7kPxuqn2YhJnf2uzbgwu6L7ITsqSigaTq:GxoNKrqoGmem+hgG0uqTJneunnn7s

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      b32575555c416963cfac86e833666fe197e4a2735fed5ded32400b0101d626eb

    • Size

      394KB

    • MD5

      faa7056e968e1949e6a946b000347acd

    • SHA1

      21fbb82d372ea90957dc6d0822329040e625d8c7

    • SHA256

      b32575555c416963cfac86e833666fe197e4a2735fed5ded32400b0101d626eb

    • SHA512

      4237f19fd06530767dad4f03ec48adbf7f7abfeed2d4700e41a37d06f2944a7dbb3043a0609f7649d8e8c5c89024333436fb07f680d49060aa3bd3e6eeb2e4ac

    • SSDEEP

      6144:GxoNKwSw+rWubZ+Qq3jye8WNI+hgGf/7kPxuqn2YhJnf2uzbgwu6L7ITsqSigaTq:GxoNKrqoGmem+hgG0uqTJneunnn7s

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.