General

  • Target

    15b66d75b04a6de7ccd4f0341450520eccfaea6cac8234303f5158306918240b

  • Size

    433KB

  • Sample

    241110-mpejrsvjet

  • MD5

    ad45b0c6f1c921fb5ffbf8e9e923d898

  • SHA1

    82200f55d392c69ab776b15ac8bbe2d7b817e064

  • SHA256

    15b66d75b04a6de7ccd4f0341450520eccfaea6cac8234303f5158306918240b

  • SHA512

    e53d04d818755a53365bb10c26e947220579524b8b09068bf4965375a4676093f21d22014cee8341de8cb915e971ae97729f3c100fbde4bb25ac29e26784dee7

  • SSDEEP

    12288:A23qDw0q1u4suLA7OTxt05stpu9fobrhJuGHlA:ACqcpZJLA762evuihb

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      15b66d75b04a6de7ccd4f0341450520eccfaea6cac8234303f5158306918240b

    • Size

      433KB

    • MD5

      ad45b0c6f1c921fb5ffbf8e9e923d898

    • SHA1

      82200f55d392c69ab776b15ac8bbe2d7b817e064

    • SHA256

      15b66d75b04a6de7ccd4f0341450520eccfaea6cac8234303f5158306918240b

    • SHA512

      e53d04d818755a53365bb10c26e947220579524b8b09068bf4965375a4676093f21d22014cee8341de8cb915e971ae97729f3c100fbde4bb25ac29e26784dee7

    • SSDEEP

      12288:A23qDw0q1u4suLA7OTxt05stpu9fobrhJuGHlA:ACqcpZJLA762evuihb

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks