General

  • Target

    17c5f107be964a74555672e5aadd2509b5abd6c9bf2ccf5828bd776f3685f25b

  • Size

    376KB

  • Sample

    241110-bx49lswhlf

  • MD5

    0b9a59694c01bdd37259c66f10aee701

  • SHA1

    4b00eb249ae68a0d9d7bd01526ced6aa7f0fe10c

  • SHA256

    17c5f107be964a74555672e5aadd2509b5abd6c9bf2ccf5828bd776f3685f25b

  • SHA512

    3144e281a35a83ec6e497d736ecf12701a2b978b30aa47291c6f71b512bea6c46a97df80103f50fa84c89fb0f41c5a24a9ea976ab069e5879813d35ce184eb6a

  • SSDEEP

    6144:Kky+bnr+5p0yN90QE56vS5JA2o0a8QkEi5xXxQhOc/Cug4htWImklUvIaA4vtPnq:gMrpy90f6vR2oX8lzBO7KKWaudAqtlch

Malware Config

Targets

    • Target

      17c5f107be964a74555672e5aadd2509b5abd6c9bf2ccf5828bd776f3685f25b

    • Size

      376KB

    • MD5

      0b9a59694c01bdd37259c66f10aee701

    • SHA1

      4b00eb249ae68a0d9d7bd01526ced6aa7f0fe10c

    • SHA256

      17c5f107be964a74555672e5aadd2509b5abd6c9bf2ccf5828bd776f3685f25b

    • SHA512

      3144e281a35a83ec6e497d736ecf12701a2b978b30aa47291c6f71b512bea6c46a97df80103f50fa84c89fb0f41c5a24a9ea976ab069e5879813d35ce184eb6a

    • SSDEEP

      6144:Kky+bnr+5p0yN90QE56vS5JA2o0a8QkEi5xXxQhOc/Cug4htWImklUvIaA4vtPnq:gMrpy90f6vR2oX8lzBO7KKWaudAqtlch

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

    • Executes dropped EXE

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks