General

  • Target

    18c198411c4f4bb5bae6efc52bcc1b00f0ab27e85661f6833d765faa5d5720d1

  • Size

    434KB

  • Sample

    241110-wd6njs1gmp

  • MD5

    a5c04432517c742bdc963683bced60f2

  • SHA1

    e3b757048204f6202330e8c861a51390e6e3effc

  • SHA256

    18c198411c4f4bb5bae6efc52bcc1b00f0ab27e85661f6833d765faa5d5720d1

  • SHA512

    3993390d3397511b065515a0146d3d12d5a52bbd9a33a26b424d5bca98d1025ff081281dd3b4729af49ab2bda5ca3b81edd4fa418fbb05676110045d3c44419e

  • SSDEEP

    6144:z6b0HLLvfYOGa7hFs+TMrSwRoSIPbYVMoNr/psoF3736O1GdkT3TBNht:b6avJMvoS6bgMoNr/psoFr36O+kT3F

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      18c198411c4f4bb5bae6efc52bcc1b00f0ab27e85661f6833d765faa5d5720d1

    • Size

      434KB

    • MD5

      a5c04432517c742bdc963683bced60f2

    • SHA1

      e3b757048204f6202330e8c861a51390e6e3effc

    • SHA256

      18c198411c4f4bb5bae6efc52bcc1b00f0ab27e85661f6833d765faa5d5720d1

    • SHA512

      3993390d3397511b065515a0146d3d12d5a52bbd9a33a26b424d5bca98d1025ff081281dd3b4729af49ab2bda5ca3b81edd4fa418fbb05676110045d3c44419e

    • SSDEEP

      6144:z6b0HLLvfYOGa7hFs+TMrSwRoSIPbYVMoNr/psoF3736O1GdkT3TBNht:b6avJMvoS6bgMoNr/psoFr36O+kT3F

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks