General

  • Target

    2dd52c4ec71d54c2a79a8f10fbfbf13a9d772a3de95866e1b03698a6ab289971

  • Size

    434KB

  • Sample

    241110-k9qresxkcp

  • MD5

    45ec3705f661492ccd9a4936788cd281

  • SHA1

    174ff4be2feb3fca87d872ffed32ad20b550dde6

  • SHA256

    2dd52c4ec71d54c2a79a8f10fbfbf13a9d772a3de95866e1b03698a6ab289971

  • SHA512

    f6cfb9bf66729d0171cc79ae9f182bec58df6f00d224a1b7fdf27b05626efd25b6053a98c11840430685e5e03dc81f386f32570c258182781876895ba337362f

  • SSDEEP

    6144:MJTpi7bxjww3MK4zPcMZ4fPHsjcm8wldunH7qorYiQI/Q+VK1I:+ihF3QPXZ8sjfBlduneorYU/Q+V

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      2dd52c4ec71d54c2a79a8f10fbfbf13a9d772a3de95866e1b03698a6ab289971

    • Size

      434KB

    • MD5

      45ec3705f661492ccd9a4936788cd281

    • SHA1

      174ff4be2feb3fca87d872ffed32ad20b550dde6

    • SHA256

      2dd52c4ec71d54c2a79a8f10fbfbf13a9d772a3de95866e1b03698a6ab289971

    • SHA512

      f6cfb9bf66729d0171cc79ae9f182bec58df6f00d224a1b7fdf27b05626efd25b6053a98c11840430685e5e03dc81f386f32570c258182781876895ba337362f

    • SSDEEP

      6144:MJTpi7bxjww3MK4zPcMZ4fPHsjcm8wldunH7qorYiQI/Q+VK1I:+ihF3QPXZ8sjfBlduneorYU/Q+V

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks