General

  • Target

    10d64b94b1ec783c59989df2d0eb3aa63a9172e6d2e342211445ce48697e5b34

  • Size

    410KB

  • Sample

    241111-hjl97svgqd

  • MD5

    3f5bf2422e1420fed960e89ffd50bfce

  • SHA1

    3d67bf52e8aa1a338b60330c0299d72b5be5040d

  • SHA256

    10d64b94b1ec783c59989df2d0eb3aa63a9172e6d2e342211445ce48697e5b34

  • SHA512

    16ba1a5d516618471da55adb0bf2f076bc67bce13684c608cd46a2a30087ee673a04ecaf0dbea7781c7946c64be76f3638547746b28ed6a11a269f0839751aa9

  • SSDEEP

    6144:xe7JNLtZXhjwNjndQBvVDFcK5ykXWxpyk11EcQx06SnBz:oJNLFwhd4VDFrykXWxpyKEcQx07B

Malware Config

Extracted

Family

redline

Botnet

170

C2

45.9.20.240:46257

Attributes
  • auth_value

    73f905977a8199ea3d396a0a7d0ae6c8

Targets

    • Target

      10d64b94b1ec783c59989df2d0eb3aa63a9172e6d2e342211445ce48697e5b34

    • Size

      410KB

    • MD5

      3f5bf2422e1420fed960e89ffd50bfce

    • SHA1

      3d67bf52e8aa1a338b60330c0299d72b5be5040d

    • SHA256

      10d64b94b1ec783c59989df2d0eb3aa63a9172e6d2e342211445ce48697e5b34

    • SHA512

      16ba1a5d516618471da55adb0bf2f076bc67bce13684c608cd46a2a30087ee673a04ecaf0dbea7781c7946c64be76f3638547746b28ed6a11a269f0839751aa9

    • SSDEEP

      6144:xe7JNLtZXhjwNjndQBvVDFcK5ykXWxpyk11EcQx06SnBz:oJNLFwhd4VDFrykXWxpyKEcQx07B

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks