General

  • Target

    4893afe7905c3c370bb63ab8bebc0862362f142524c321bc8fd2db015873e854

  • Size

    273KB

  • Sample

    241110-ld8sssvakg

  • MD5

    5cfaf86daf399aaef71b656f3952afaf

  • SHA1

    af2b8de4c03cd3f7cb232780f2221b0df4809567

  • SHA256

    4893afe7905c3c370bb63ab8bebc0862362f142524c321bc8fd2db015873e854

  • SHA512

    dd1ba7a13a3c643698f6e43fc97f885713756fa7b205f656d7ca4b8433640fe2cc77108ffc050740b5f514f9972ef86bcce6fa7c705f6f3b9f4426df80d884af

  • SSDEEP

    6144:ppXL09yoFML3jGXA8DHiKbCzM1OWXz89yUs46ntHyrst2B:HXayoFcKTfUKY96VnFgst2

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      4893afe7905c3c370bb63ab8bebc0862362f142524c321bc8fd2db015873e854

    • Size

      273KB

    • MD5

      5cfaf86daf399aaef71b656f3952afaf

    • SHA1

      af2b8de4c03cd3f7cb232780f2221b0df4809567

    • SHA256

      4893afe7905c3c370bb63ab8bebc0862362f142524c321bc8fd2db015873e854

    • SHA512

      dd1ba7a13a3c643698f6e43fc97f885713756fa7b205f656d7ca4b8433640fe2cc77108ffc050740b5f514f9972ef86bcce6fa7c705f6f3b9f4426df80d884af

    • SSDEEP

      6144:ppXL09yoFML3jGXA8DHiKbCzM1OWXz89yUs46ntHyrst2B:HXayoFcKTfUKY96VnFgst2

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks