General

  • Target

    a90df6ee5d1ba58be5c3344fe7ca43645aa0c40b4a6785f3ffd2bb6782b07b24

  • Size

    479KB

  • Sample

    241109-y6gagatrdk

  • MD5

    bf2c4ee3b7c0df03dafa3143b450c56f

  • SHA1

    98be9c3b8fd35d29cd767546af04c94b432f6c89

  • SHA256

    a90df6ee5d1ba58be5c3344fe7ca43645aa0c40b4a6785f3ffd2bb6782b07b24

  • SHA512

    84f33c60e40a02105d72e11087ebf6ce3b8049ebb6a1c6db7994b34bd94fb99aa61ff25a732b6850e63615cacd2ae07401f3d4cbc1ae34dfac058bb1e8e6576f

  • SSDEEP

    12288:nMrXy908bMTyDlRMh0QDgPCVROlRHqmQkmhlL:4yT5DlyrUKRsIm90L

Malware Config

Targets

    • Target

      a90df6ee5d1ba58be5c3344fe7ca43645aa0c40b4a6785f3ffd2bb6782b07b24

    • Size

      479KB

    • MD5

      bf2c4ee3b7c0df03dafa3143b450c56f

    • SHA1

      98be9c3b8fd35d29cd767546af04c94b432f6c89

    • SHA256

      a90df6ee5d1ba58be5c3344fe7ca43645aa0c40b4a6785f3ffd2bb6782b07b24

    • SHA512

      84f33c60e40a02105d72e11087ebf6ce3b8049ebb6a1c6db7994b34bd94fb99aa61ff25a732b6850e63615cacd2ae07401f3d4cbc1ae34dfac058bb1e8e6576f

    • SSDEEP

      12288:nMrXy908bMTyDlRMh0QDgPCVROlRHqmQkmhlL:4yT5DlyrUKRsIm90L

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

    • Executes dropped EXE

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks