General

  • Target

    1f66100285bf77d09508563b168d6e3d077e5088a1b7b47d49116378350acf8d

  • Size

    297KB

  • Sample

    241111-hn3sraylgj

  • MD5

    07135b2047c441d260ef06899c787a7d

  • SHA1

    61e57f7c7b6a9085096f954a980e3786fb8f3748

  • SHA256

    1f66100285bf77d09508563b168d6e3d077e5088a1b7b47d49116378350acf8d

  • SHA512

    779978be627481774fa9291b48630959cbdb76ec4ac8c8797df690b9b78a41949365bac432a6c0755fee5828234eebf1fffa7037232c8a83e7db3dad5ad0486c

  • SSDEEP

    6144:UvHwCMbovF9JUKbHGTRfcfX1m3fbGKUBjcFPx76COzuS92:UPwCMbovF9JUKrGTRVCKajcfgzu

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      1f66100285bf77d09508563b168d6e3d077e5088a1b7b47d49116378350acf8d

    • Size

      297KB

    • MD5

      07135b2047c441d260ef06899c787a7d

    • SHA1

      61e57f7c7b6a9085096f954a980e3786fb8f3748

    • SHA256

      1f66100285bf77d09508563b168d6e3d077e5088a1b7b47d49116378350acf8d

    • SHA512

      779978be627481774fa9291b48630959cbdb76ec4ac8c8797df690b9b78a41949365bac432a6c0755fee5828234eebf1fffa7037232c8a83e7db3dad5ad0486c

    • SSDEEP

      6144:UvHwCMbovF9JUKbHGTRfcfX1m3fbGKUBjcFPx76COzuS92:UPwCMbovF9JUKrGTRVCKajcfgzu

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks