General

  • Target

    c6a65d9a705351b934af311e363f2799eee3b703679f46a9f14fd598c5dd6261

  • Size

    433KB

  • Sample

    241110-j6y3ysshpr

  • MD5

    4674cb0f1523f884f76515d596ce70a7

  • SHA1

    dad1ee290d094c010b6e5186324bfe4b9a0bdf23

  • SHA256

    c6a65d9a705351b934af311e363f2799eee3b703679f46a9f14fd598c5dd6261

  • SHA512

    80bc8bace15faa4ae3f44263e8427b326cfa2c2f32692eb3541ce311de620dd5c50859818f3475c7b8b1eb45fef502a518028645f66d85725f5a5e7ccbd405aa

  • SSDEEP

    12288:A23qDw0q1u4suLA7OTxt05stpu9fobrhJuGHlA:ACqcpZJLA762evuihb

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      c6a65d9a705351b934af311e363f2799eee3b703679f46a9f14fd598c5dd6261

    • Size

      433KB

    • MD5

      4674cb0f1523f884f76515d596ce70a7

    • SHA1

      dad1ee290d094c010b6e5186324bfe4b9a0bdf23

    • SHA256

      c6a65d9a705351b934af311e363f2799eee3b703679f46a9f14fd598c5dd6261

    • SHA512

      80bc8bace15faa4ae3f44263e8427b326cfa2c2f32692eb3541ce311de620dd5c50859818f3475c7b8b1eb45fef502a518028645f66d85725f5a5e7ccbd405aa

    • SSDEEP

      12288:A23qDw0q1u4suLA7OTxt05stpu9fobrhJuGHlA:ACqcpZJLA762evuihb

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks