General

  • Target

    dbba87ae9dbc79667c819d5be3c6d14c009a56587c2e7b057929ac0856379677

  • Size

    410KB

  • Sample

    241111-hs8jssvfjp

  • MD5

    f05abdb30bec0c89f59bf8a130c68f71

  • SHA1

    fd1c35ce88608baefb5102cca3e4c0d90ff67e0c

  • SHA256

    dbba87ae9dbc79667c819d5be3c6d14c009a56587c2e7b057929ac0856379677

  • SHA512

    1e45d014d8708057decb3083e020fce578862224a22216e4b7a592af885497dc52765d32970f3c93b2d49047e59311a36e6f25bede6bc4881cf1fd0f430ae6c0

  • SSDEEP

    6144:xe7JNLtZXhjwNjndQBvVDFcK5ykXWxpyk11EcQx06SnBz:oJNLFwhd4VDFrykXWxpyKEcQx07B

Malware Config

Extracted

Family

redline

Botnet

170

C2

45.9.20.240:46257

Attributes
  • auth_value

    73f905977a8199ea3d396a0a7d0ae6c8

Targets

    • Target

      dbba87ae9dbc79667c819d5be3c6d14c009a56587c2e7b057929ac0856379677

    • Size

      410KB

    • MD5

      f05abdb30bec0c89f59bf8a130c68f71

    • SHA1

      fd1c35ce88608baefb5102cca3e4c0d90ff67e0c

    • SHA256

      dbba87ae9dbc79667c819d5be3c6d14c009a56587c2e7b057929ac0856379677

    • SHA512

      1e45d014d8708057decb3083e020fce578862224a22216e4b7a592af885497dc52765d32970f3c93b2d49047e59311a36e6f25bede6bc4881cf1fd0f430ae6c0

    • SSDEEP

      6144:xe7JNLtZXhjwNjndQBvVDFcK5ykXWxpyk11EcQx06SnBz:oJNLFwhd4VDFrykXWxpyKEcQx07B

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks