General

  • Target

    47431fe21257fbdc9a2437b773ff3a2d79edb03cd1721caa1cea31313edaae9f

  • Size

    1.2MB

  • Sample

    241111-htmcystrhv

  • MD5

    d15e4d9416c787ccccd55c98c494d922

  • SHA1

    d29bb62fdbb05c9bdfebcbc3a33233817b2f9bae

  • SHA256

    47431fe21257fbdc9a2437b773ff3a2d79edb03cd1721caa1cea31313edaae9f

  • SHA512

    a2dfed3103aec0ceba33fa1c10cd8988cd8a2ea72f0a394e6da7adc4dbe01d40578d103e55679b0dd8bceec38f4bb394b18b4f8362c4afe9bd177d16489b2611

  • SSDEEP

    24576:Py//pZO0m7jdMxA4w9+d+6YkMBsCNIGwz/3XNmH/dwk/n:a3XRTA4/LMBsCCNvYH

Malware Config

Targets

    • Target

      47431fe21257fbdc9a2437b773ff3a2d79edb03cd1721caa1cea31313edaae9f

    • Size

      1.2MB

    • MD5

      d15e4d9416c787ccccd55c98c494d922

    • SHA1

      d29bb62fdbb05c9bdfebcbc3a33233817b2f9bae

    • SHA256

      47431fe21257fbdc9a2437b773ff3a2d79edb03cd1721caa1cea31313edaae9f

    • SHA512

      a2dfed3103aec0ceba33fa1c10cd8988cd8a2ea72f0a394e6da7adc4dbe01d40578d103e55679b0dd8bceec38f4bb394b18b4f8362c4afe9bd177d16489b2611

    • SSDEEP

      24576:Py//pZO0m7jdMxA4w9+d+6YkMBsCNIGwz/3XNmH/dwk/n:a3XRTA4/LMBsCCNvYH

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

    • Executes dropped EXE

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks