General

  • Target

    61d9515c69e4da2bb47b649d90f7ea17c6e5324c634c68646b69101ecffbafdb

  • Size

    438KB

  • Sample

    241110-me6khavcqj

  • MD5

    a4840df2f30d3d80d22a12db48108735

  • SHA1

    1be136ebfea242a147089b37a13d4b02819ebeb2

  • SHA256

    61d9515c69e4da2bb47b649d90f7ea17c6e5324c634c68646b69101ecffbafdb

  • SHA512

    312f17d42a2371d881d4ae8c6936359aa4f0ea82f50f97f30fe535b0ca13b4426c6222106b9453e6e7e902c7f785059d00dfc94fdaed63ff9eb7d9adfa9742b0

  • SSDEEP

    12288:wqkdKtC4xiAqjop8iDPRSRjAHzi5nHbZRK8nPyy3eBPno:1cqxx1p8LK8KQc

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      61d9515c69e4da2bb47b649d90f7ea17c6e5324c634c68646b69101ecffbafdb

    • Size

      438KB

    • MD5

      a4840df2f30d3d80d22a12db48108735

    • SHA1

      1be136ebfea242a147089b37a13d4b02819ebeb2

    • SHA256

      61d9515c69e4da2bb47b649d90f7ea17c6e5324c634c68646b69101ecffbafdb

    • SHA512

      312f17d42a2371d881d4ae8c6936359aa4f0ea82f50f97f30fe535b0ca13b4426c6222106b9453e6e7e902c7f785059d00dfc94fdaed63ff9eb7d9adfa9742b0

    • SSDEEP

      12288:wqkdKtC4xiAqjop8iDPRSRjAHzi5nHbZRK8nPyy3eBPno:1cqxx1p8LK8KQc

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks