General

  • Target

    59076658c8e47f3b2a503766bd4cdd5d294a8c2ac43da662a5d2d80cc53719d9

  • Size

    293KB

  • Sample

    241110-lkgynatlhv

  • MD5

    41a693328d2eb4d3224eb16e07de8015

  • SHA1

    21d46f3b95fea45d5adc689b09af11ba1581cc0f

  • SHA256

    59076658c8e47f3b2a503766bd4cdd5d294a8c2ac43da662a5d2d80cc53719d9

  • SHA512

    d1e850b0200db09bcdc2c30ebe7241c5536ea49dd8c4516c65eeab43b139d162df153481459e630e301abca0320bc7dd3a3cc949da1b1e2c4fe849995f4b9c6e

  • SSDEEP

    6144:CLaS0U0uK3XyxqmFnNfEkUM8M+ShuSz6abPuzbgwuvjB:CuS0Uqn+FGk/8Mfh5OWunn0

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.168:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      59076658c8e47f3b2a503766bd4cdd5d294a8c2ac43da662a5d2d80cc53719d9

    • Size

      293KB

    • MD5

      41a693328d2eb4d3224eb16e07de8015

    • SHA1

      21d46f3b95fea45d5adc689b09af11ba1581cc0f

    • SHA256

      59076658c8e47f3b2a503766bd4cdd5d294a8c2ac43da662a5d2d80cc53719d9

    • SHA512

      d1e850b0200db09bcdc2c30ebe7241c5536ea49dd8c4516c65eeab43b139d162df153481459e630e301abca0320bc7dd3a3cc949da1b1e2c4fe849995f4b9c6e

    • SSDEEP

      6144:CLaS0U0uK3XyxqmFnNfEkUM8M+ShuSz6abPuzbgwuvjB:CuS0Uqn+FGk/8Mfh5OWunn0

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks