General

  • Target

    147f92ca83f0becaf9331f9ecb47d9cef1e69bdd4b0d45b0565634785d31da7e

  • Size

    432KB

  • Sample

    241110-y7bflsvcpd

  • MD5

    57b4e2e9de489d4a5719431fcc222570

  • SHA1

    46be7cf138aed50ccc138ebcaccaf6986f057771

  • SHA256

    147f92ca83f0becaf9331f9ecb47d9cef1e69bdd4b0d45b0565634785d31da7e

  • SHA512

    1a2213dde47c7d4086220bab2371eb719561697020e4e62075614f282116fb1994cb7c5dbc7e613174248b474364d37db00fb6bea0e6c34a3e301a727ae93adc

  • SSDEEP

    6144:yGO9Zbg+pdyt8LlZuPpTOl2eV7pw5fq22bM0harV83KpzZWK3g2tF0:VO91g+pdytWZucV2E3harS3KpMK3g2T

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      147f92ca83f0becaf9331f9ecb47d9cef1e69bdd4b0d45b0565634785d31da7e

    • Size

      432KB

    • MD5

      57b4e2e9de489d4a5719431fcc222570

    • SHA1

      46be7cf138aed50ccc138ebcaccaf6986f057771

    • SHA256

      147f92ca83f0becaf9331f9ecb47d9cef1e69bdd4b0d45b0565634785d31da7e

    • SHA512

      1a2213dde47c7d4086220bab2371eb719561697020e4e62075614f282116fb1994cb7c5dbc7e613174248b474364d37db00fb6bea0e6c34a3e301a727ae93adc

    • SSDEEP

      6144:yGO9Zbg+pdyt8LlZuPpTOl2eV7pw5fq22bM0harV83KpzZWK3g2tF0:VO91g+pdytWZucV2E3harS3KpMK3g2T

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks