General

  • Target

    85a797d303ad2192960a78e7745756c67f727308dc8b4ab663803d76ae9a115c

  • Size

    297KB

  • Sample

    241110-xs6sjatbqa

  • MD5

    7915ec8b0c81674cc43639589fa604bf

  • SHA1

    22cd391a97c5a6a304c6e4692df28119f0302280

  • SHA256

    85a797d303ad2192960a78e7745756c67f727308dc8b4ab663803d76ae9a115c

  • SHA512

    9adacf1fd06e3f2e1b3640680553fd3bed84bf266d14ea6b3ca4806da8c6d29a1d9c53ee6c605e8b8251c3ade2c7f51cfe26b5e24ef4a3a1c11935c8a62840ae

  • SSDEEP

    6144:rvHwCMbovQJ2lzmGk2l3u7ZOuc50Cb/7rRSUbHMfG4:rPwCMbovQJ6N3u7ZeR/7Ce

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      85a797d303ad2192960a78e7745756c67f727308dc8b4ab663803d76ae9a115c

    • Size

      297KB

    • MD5

      7915ec8b0c81674cc43639589fa604bf

    • SHA1

      22cd391a97c5a6a304c6e4692df28119f0302280

    • SHA256

      85a797d303ad2192960a78e7745756c67f727308dc8b4ab663803d76ae9a115c

    • SHA512

      9adacf1fd06e3f2e1b3640680553fd3bed84bf266d14ea6b3ca4806da8c6d29a1d9c53ee6c605e8b8251c3ade2c7f51cfe26b5e24ef4a3a1c11935c8a62840ae

    • SSDEEP

      6144:rvHwCMbovQJ2lzmGk2l3u7ZOuc50Cb/7rRSUbHMfG4:rPwCMbovQJ6N3u7ZeR/7Ce

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks