General

  • Target

    0f1d5285c82068c2ad4289491a081160834277bb38da650b520967381d06814d

  • Size

    446KB

  • Sample

    241110-hnzfbsscjc

  • MD5

    0a498d673c92801f31dc7f11358149a0

  • SHA1

    dd285cd5c1b3bcee07d2627b3ae80700b75eb20d

  • SHA256

    0f1d5285c82068c2ad4289491a081160834277bb38da650b520967381d06814d

  • SHA512

    e213b146bee02d2477709b52df88766d632842b09ec2638c6a8e57fdc3280eee92887ff3d1df85f142ec4b5358f867d6a8d962389b6031775fc2880ab4c934ca

  • SSDEEP

    12288:S8ejRy6JaJelQM6uGOKMaWxHJpizjWs4M:XqYes3MxxHJpR7M

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      0f1d5285c82068c2ad4289491a081160834277bb38da650b520967381d06814d

    • Size

      446KB

    • MD5

      0a498d673c92801f31dc7f11358149a0

    • SHA1

      dd285cd5c1b3bcee07d2627b3ae80700b75eb20d

    • SHA256

      0f1d5285c82068c2ad4289491a081160834277bb38da650b520967381d06814d

    • SHA512

      e213b146bee02d2477709b52df88766d632842b09ec2638c6a8e57fdc3280eee92887ff3d1df85f142ec4b5358f867d6a8d962389b6031775fc2880ab4c934ca

    • SSDEEP

      12288:S8ejRy6JaJelQM6uGOKMaWxHJpizjWs4M:XqYes3MxxHJpR7M

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks