General

  • Target

    83535a5e75b00a043c80e41b12f844682f723be8f6b7272b9be56ee535efe14c

  • Size

    442KB

  • Sample

    241109-pe287athpe

  • MD5

    a840fbfe267f822bdf1db055e8beceb0

  • SHA1

    ce79488c16377e2579fa991da03dc42eedaae14b

  • SHA256

    83535a5e75b00a043c80e41b12f844682f723be8f6b7272b9be56ee535efe14c

  • SHA512

    c71ac1cf08bdc9536d82c3e8eaf23555880da4d0bb282292d3d31294c2f2f59c878b53e096f770c57d037594adf9cb74bb861490fa2aaba90a7d5117969af49b

  • SSDEEP

    6144:TmdckoOVAQwglvkNo1cThqGhCV3YDd+DG0XYPfbW7yV1O7TC/d:TmScV4VNo1cTNha3YDd+DG0XYa701Ov

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      83535a5e75b00a043c80e41b12f844682f723be8f6b7272b9be56ee535efe14c

    • Size

      442KB

    • MD5

      a840fbfe267f822bdf1db055e8beceb0

    • SHA1

      ce79488c16377e2579fa991da03dc42eedaae14b

    • SHA256

      83535a5e75b00a043c80e41b12f844682f723be8f6b7272b9be56ee535efe14c

    • SHA512

      c71ac1cf08bdc9536d82c3e8eaf23555880da4d0bb282292d3d31294c2f2f59c878b53e096f770c57d037594adf9cb74bb861490fa2aaba90a7d5117969af49b

    • SSDEEP

      6144:TmdckoOVAQwglvkNo1cThqGhCV3YDd+DG0XYPfbW7yV1O7TC/d:TmScV4VNo1cTNha3YDd+DG0XYa701Ov

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks