General

  • Target

    b3fd68dcdbb1a51b4cac28e1d274d25ce5f6b4aadc6f9de10758296c110570e5

  • Size

    273KB

  • Sample

    241110-xb87bssjez

  • MD5

    d3daf155c311ae72653aa74db798a3d7

  • SHA1

    9a8a79e1767c3929e6700c70ea6c35d131bf2531

  • SHA256

    b3fd68dcdbb1a51b4cac28e1d274d25ce5f6b4aadc6f9de10758296c110570e5

  • SHA512

    3bbdaebe52612b53d66217ce6f0d2fcf4c1a24b947a8d34a485bfbf530ba6a8945944251fdba8983ff10450bc96a495c675590043752604cd8401b59585bd937

  • SSDEEP

    6144:cEdqL9Tqlb3UwB7AYmFMz3LeJOyPXXUJWyRveB9W9JrB:fqJTqlbEMMYmW3A9vUJWyRW67

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      b3fd68dcdbb1a51b4cac28e1d274d25ce5f6b4aadc6f9de10758296c110570e5

    • Size

      273KB

    • MD5

      d3daf155c311ae72653aa74db798a3d7

    • SHA1

      9a8a79e1767c3929e6700c70ea6c35d131bf2531

    • SHA256

      b3fd68dcdbb1a51b4cac28e1d274d25ce5f6b4aadc6f9de10758296c110570e5

    • SHA512

      3bbdaebe52612b53d66217ce6f0d2fcf4c1a24b947a8d34a485bfbf530ba6a8945944251fdba8983ff10450bc96a495c675590043752604cd8401b59585bd937

    • SSDEEP

      6144:cEdqL9Tqlb3UwB7AYmFMz3LeJOyPXXUJWyRveB9W9JrB:fqJTqlbEMMYmW3A9vUJWyRW67

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks