General

  • Target

    15711c8ca12507e17e22f8f8cd1ab9fcf8d1767c731536a18b650ed10034f25e

  • Size

    446KB

  • Sample

    241111-jqbygsweqe

  • MD5

    81c4eb86fbfdb52c8454040eaf5a4a92

  • SHA1

    445fa221073cc4b5515776bb67e4850b7da2df35

  • SHA256

    15711c8ca12507e17e22f8f8cd1ab9fcf8d1767c731536a18b650ed10034f25e

  • SHA512

    d830bdef912de2f6b970d3b5cc5628f72af78dd6680e37085151bce70bafe3c3d215c7af9e7b7fc50facb02be42a8087977714313700351ce0acc9e23f4097de

  • SSDEEP

    12288:xSgreJ4MJ8i7EB37Wk4pi5W0mPpg9VfI:xMJ4MJXwN77C0mPpa

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      15711c8ca12507e17e22f8f8cd1ab9fcf8d1767c731536a18b650ed10034f25e

    • Size

      446KB

    • MD5

      81c4eb86fbfdb52c8454040eaf5a4a92

    • SHA1

      445fa221073cc4b5515776bb67e4850b7da2df35

    • SHA256

      15711c8ca12507e17e22f8f8cd1ab9fcf8d1767c731536a18b650ed10034f25e

    • SHA512

      d830bdef912de2f6b970d3b5cc5628f72af78dd6680e37085151bce70bafe3c3d215c7af9e7b7fc50facb02be42a8087977714313700351ce0acc9e23f4097de

    • SSDEEP

      12288:xSgreJ4MJ8i7EB37Wk4pi5W0mPpg9VfI:xMJ4MJXwN77C0mPpa

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks