General

  • Target

    3486b872ca5ffc6e07bb923ce5545372a7b62827442fe3795a9d1e1467650268

  • Size

    1.1MB

  • Sample

    241109-y3cswazrdy

  • MD5

    f508c091b49eba821242848f4bbf7d58

  • SHA1

    388db7489e536041e8e9d9e1bdfffcdfc73bc9f4

  • SHA256

    3486b872ca5ffc6e07bb923ce5545372a7b62827442fe3795a9d1e1467650268

  • SHA512

    de96b025277420937d8d2b060b9caa984120b4334ff5ecfa406d988ea530ba764c2e2ef9374d993223eecca39175eb52b220ea52908adc518af80a8cc3b2d88a

  • SSDEEP

    24576:Sydawvh7d/+GIhF0ZIWQ07UwhKe9YgFBJUnV1rkbT:5dawvD+Gs0ZIM7UwwsFBJUvO

Malware Config

Targets

    • Target

      3486b872ca5ffc6e07bb923ce5545372a7b62827442fe3795a9d1e1467650268

    • Size

      1.1MB

    • MD5

      f508c091b49eba821242848f4bbf7d58

    • SHA1

      388db7489e536041e8e9d9e1bdfffcdfc73bc9f4

    • SHA256

      3486b872ca5ffc6e07bb923ce5545372a7b62827442fe3795a9d1e1467650268

    • SHA512

      de96b025277420937d8d2b060b9caa984120b4334ff5ecfa406d988ea530ba764c2e2ef9374d993223eecca39175eb52b220ea52908adc518af80a8cc3b2d88a

    • SSDEEP

      24576:Sydawvh7d/+GIhF0ZIWQ07UwhKe9YgFBJUnV1rkbT:5dawvD+Gs0ZIM7UwwsFBJUvO

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

    • Executes dropped EXE

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks