General

  • Target

    f96905316aef783d207c3dfd3059eb6c9c8c1d36e4ac284389ae2ff2f335b303

  • Size

    479KB

  • Sample

    241111-hj6c3sykgl

  • MD5

    a0b424246e704dfcf024f87de51b61fc

  • SHA1

    be9f7089a8f04cdf092421516fc41d812e613c22

  • SHA256

    f96905316aef783d207c3dfd3059eb6c9c8c1d36e4ac284389ae2ff2f335b303

  • SHA512

    d2c9a81bd5bd712e61b533be2aed5fed8fd07330bab9d570419ed736f7aa2727a8dc30351a62819949a62248d5e33d8c2f476354e1a4fa872e493e33e6829237

  • SSDEEP

    12288:mMr7y901kazwZQ1JpvAsq/kFKupRRW1Bg9zs0iCRSPQW3e:ZyMZ9NA5Kvk1uu0iCPWO

Malware Config

Targets

    • Target

      f96905316aef783d207c3dfd3059eb6c9c8c1d36e4ac284389ae2ff2f335b303

    • Size

      479KB

    • MD5

      a0b424246e704dfcf024f87de51b61fc

    • SHA1

      be9f7089a8f04cdf092421516fc41d812e613c22

    • SHA256

      f96905316aef783d207c3dfd3059eb6c9c8c1d36e4ac284389ae2ff2f335b303

    • SHA512

      d2c9a81bd5bd712e61b533be2aed5fed8fd07330bab9d570419ed736f7aa2727a8dc30351a62819949a62248d5e33d8c2f476354e1a4fa872e493e33e6829237

    • SSDEEP

      12288:mMr7y901kazwZQ1JpvAsq/kFKupRRW1Bg9zs0iCRSPQW3e:ZyMZ9NA5Kvk1uu0iCPWO

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

    • Executes dropped EXE

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks