General

  • Target

    59e60cf85d58ab40c35d6df6a53e24974f2a64d27a1fca510b75636a16056573

  • Size

    433KB

  • Sample

    241110-vsq1zavjdn

  • MD5

    e595696dbb8f3924a980b851a0e5c0f5

  • SHA1

    21cbde6efc681a7d5427a817a2c86a1ec3bdf782

  • SHA256

    59e60cf85d58ab40c35d6df6a53e24974f2a64d27a1fca510b75636a16056573

  • SHA512

    6b22ff9287948cf5e2a2f4e3bbb142dfe9816badae99fe34ce28e4bb7f53f5a004d25ac3362c15134448e02ba5c185bee0c798d2075df23a7a8a294ca1c30b7b

  • SSDEEP

    6144:AdToZq3KGUE6ySWgZk589XDR8JuLLH2PRpm7oio4AylG8Tqpx:KTn4E6y+k58dGQX2PRpm7/o4AD8Tq/

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      59e60cf85d58ab40c35d6df6a53e24974f2a64d27a1fca510b75636a16056573

    • Size

      433KB

    • MD5

      e595696dbb8f3924a980b851a0e5c0f5

    • SHA1

      21cbde6efc681a7d5427a817a2c86a1ec3bdf782

    • SHA256

      59e60cf85d58ab40c35d6df6a53e24974f2a64d27a1fca510b75636a16056573

    • SHA512

      6b22ff9287948cf5e2a2f4e3bbb142dfe9816badae99fe34ce28e4bb7f53f5a004d25ac3362c15134448e02ba5c185bee0c798d2075df23a7a8a294ca1c30b7b

    • SSDEEP

      6144:AdToZq3KGUE6ySWgZk589XDR8JuLLH2PRpm7oio4AylG8Tqpx:KTn4E6y+k58dGQX2PRpm7/o4AD8Tq/

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks