General

  • Target

    16b62ee249f137bdc1465433c73f132022598c4795a09bdceda8b0b774a28513

  • Size

    599KB

  • Sample

    241109-ynqq7a1dlh

  • MD5

    4b3799d7a6c283b939b084505e71a927

  • SHA1

    d52a4019f57924aef8090b3d17b0956832c2810f

  • SHA256

    16b62ee249f137bdc1465433c73f132022598c4795a09bdceda8b0b774a28513

  • SHA512

    4dca4a9bd64f3f5a40546a0186a104aa9c7570721f4413435621d2493f932bb58f3a9574d2802e9571ec4ff3d5a4fd40b8a818e39e648a09ec0a5ff656e8baad

  • SSDEEP

    12288:YMrey90eCbuXeQmn5cDdT6l56R+PzbEGbaJMv+m:2y/VmnyDdT6l56e/bWPm

Malware Config

Targets

    • Target

      16b62ee249f137bdc1465433c73f132022598c4795a09bdceda8b0b774a28513

    • Size

      599KB

    • MD5

      4b3799d7a6c283b939b084505e71a927

    • SHA1

      d52a4019f57924aef8090b3d17b0956832c2810f

    • SHA256

      16b62ee249f137bdc1465433c73f132022598c4795a09bdceda8b0b774a28513

    • SHA512

      4dca4a9bd64f3f5a40546a0186a104aa9c7570721f4413435621d2493f932bb58f3a9574d2802e9571ec4ff3d5a4fd40b8a818e39e648a09ec0a5ff656e8baad

    • SSDEEP

      12288:YMrey90eCbuXeQmn5cDdT6l56R+PzbEGbaJMv+m:2y/VmnyDdT6l56e/bWPm

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

    • Executes dropped EXE

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks