General

  • Target

    fc0076aca95c25f1fadf2e266082640ebc6643a5eb8f00ebc0e3d141854fece8

  • Size

    434KB

  • Sample

    241110-vgtmqatqgq

  • MD5

    200e95fb2a0e5ddd2f09e3d328568a63

  • SHA1

    8082901b5c341f19cf615cafe4a134c0687f2f7b

  • SHA256

    fc0076aca95c25f1fadf2e266082640ebc6643a5eb8f00ebc0e3d141854fece8

  • SHA512

    4de91b73b7ca122f841441299a92f80f7cea41142548e4f0ff346860774291ccad9d6aa2d35972119ac9107bd997ef3a685507de2c63c50332fe6ff72db47a0d

  • SSDEEP

    6144:z6b0HLLvfYOGa7hFs+TMrSwRoSIPbYVMoNr/psoF3736O1GdkT3TBNht:b6avJMvoS6bgMoNr/psoFr36O+kT3F

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      fc0076aca95c25f1fadf2e266082640ebc6643a5eb8f00ebc0e3d141854fece8

    • Size

      434KB

    • MD5

      200e95fb2a0e5ddd2f09e3d328568a63

    • SHA1

      8082901b5c341f19cf615cafe4a134c0687f2f7b

    • SHA256

      fc0076aca95c25f1fadf2e266082640ebc6643a5eb8f00ebc0e3d141854fece8

    • SHA512

      4de91b73b7ca122f841441299a92f80f7cea41142548e4f0ff346860774291ccad9d6aa2d35972119ac9107bd997ef3a685507de2c63c50332fe6ff72db47a0d

    • SSDEEP

      6144:z6b0HLLvfYOGa7hFs+TMrSwRoSIPbYVMoNr/psoF3736O1GdkT3TBNht:b6avJMvoS6bgMoNr/psoFr36O+kT3F

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks