General

  • Target

    522e6824c8d910bd1dec890eb90ad7ea83d307eb129abaf519bf38681388cae6

  • Size

    332KB

  • Sample

    241111-gnh8nsthkm

  • MD5

    b8134145da7eb1179f071de409fd7129

  • SHA1

    2f859633f181d51a189105150848a3d8e9c32030

  • SHA256

    522e6824c8d910bd1dec890eb90ad7ea83d307eb129abaf519bf38681388cae6

  • SHA512

    0b69e9d619e1ba5e8189d3dfd0009bdc7409c239af9650f4deae853e5e28b767465d2e46941e4dd3bfaf228a84fcfd3c3cbeb45afd4d686041de395d28d76d32

  • SSDEEP

    6144:u51LCQ3iXocFh2wXMz716zeY8XsPagqTmmRfMzip4B:u5dr+ocFDc/1K3+sCgqTmww

Malware Config

Targets

    • Target

      9980ff61b4b54597cbc2ec2cfe111f78fa461ac0806cf05b5ab18dbc09e8737f.exe

    • Size

      376KB

    • MD5

      e59f30ac820ea021f3fa045aaed4fdf4

    • SHA1

      635d53805796a58290d68613fe0f08edee053058

    • SHA256

      9980ff61b4b54597cbc2ec2cfe111f78fa461ac0806cf05b5ab18dbc09e8737f

    • SHA512

      f2ae729530af105e5ec6bde2a0b6d4a7acef161aab872ad289fbdcd28159d989b493bb0ec44c1f0a0e8d96be7fd005ed302c37015c64d1580468817fae377d3c

    • SSDEEP

      6144:Kpy+bnr+5p0yN90QERmWkWanZNdPR5d46kqab7aQUUArvkI15gY2BIzzq:HMrBy90nk4Vqab7dUXrf1j24q

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

    • Executes dropped EXE

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks