General

  • Target

    6ed6757250d1479ec6015e8eab82a66a588fb190c0fcbbee3eec9b0af3664955

  • Size

    434KB

  • Sample

    241110-vnq56szrdv

  • MD5

    e65d8ee0328795ca3bd181699f414f12

  • SHA1

    59f8fb5518f5b7804eeb650a1a7df888cad1fab9

  • SHA256

    6ed6757250d1479ec6015e8eab82a66a588fb190c0fcbbee3eec9b0af3664955

  • SHA512

    484a3863508244565e129a8ec7b3be8c96139a81cf853acecdb62bf272732ad73b6af34363203a85b4957356c99bdca882d745b17320c320b5828189a089dcb9

  • SSDEEP

    6144:Hr0QYxhADcxG776qrJvzPkAoaTCoWYCYe7oBAimyA0L2Zv:L0Q4hIcM7+0v7kN0CjYCYcoBAsA0L2p

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      6ed6757250d1479ec6015e8eab82a66a588fb190c0fcbbee3eec9b0af3664955

    • Size

      434KB

    • MD5

      e65d8ee0328795ca3bd181699f414f12

    • SHA1

      59f8fb5518f5b7804eeb650a1a7df888cad1fab9

    • SHA256

      6ed6757250d1479ec6015e8eab82a66a588fb190c0fcbbee3eec9b0af3664955

    • SHA512

      484a3863508244565e129a8ec7b3be8c96139a81cf853acecdb62bf272732ad73b6af34363203a85b4957356c99bdca882d745b17320c320b5828189a089dcb9

    • SSDEEP

      6144:Hr0QYxhADcxG776qrJvzPkAoaTCoWYCYe7oBAimyA0L2Zv:L0Q4hIcM7+0v7kN0CjYCYcoBAsA0L2p

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks