General

  • Target

    7407fb9597d612951f76b22062c51c8bf3e5832b6a9f4a37b21e18801776c4be

  • Size

    432KB

  • Sample

    241110-ljd6datgmk

  • MD5

    2ebe8320a2024f298fb357123c2597a1

  • SHA1

    fd60321f70d3a50e8187ca74a9c3d9a3c9d77792

  • SHA256

    7407fb9597d612951f76b22062c51c8bf3e5832b6a9f4a37b21e18801776c4be

  • SHA512

    ebfd7cb3591210a0828f7c1c4c87511a6fbebba6f32778220443a2d6a9271109edcd33f58b653ab8f1bbba645f17f08a4e54246193a3c7f49377dfda0ad3a50e

  • SSDEEP

    6144:yGO9Zbg+pdyt8LlZuPpTOl2eV7pw5fq22bM0harV83KpzZWK3g2tF0:VO91g+pdytWZucV2E3harS3KpMK3g2T

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      7407fb9597d612951f76b22062c51c8bf3e5832b6a9f4a37b21e18801776c4be

    • Size

      432KB

    • MD5

      2ebe8320a2024f298fb357123c2597a1

    • SHA1

      fd60321f70d3a50e8187ca74a9c3d9a3c9d77792

    • SHA256

      7407fb9597d612951f76b22062c51c8bf3e5832b6a9f4a37b21e18801776c4be

    • SHA512

      ebfd7cb3591210a0828f7c1c4c87511a6fbebba6f32778220443a2d6a9271109edcd33f58b653ab8f1bbba645f17f08a4e54246193a3c7f49377dfda0ad3a50e

    • SSDEEP

      6144:yGO9Zbg+pdyt8LlZuPpTOl2eV7pw5fq22bM0harV83KpzZWK3g2tF0:VO91g+pdytWZucV2E3harS3KpMK3g2T

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks