General

  • Target

    31fdb6cdefcce6460f466337bc2ffd1090d01b05f4122a1a3c3a6a3956cc149e

  • Size

    446KB

  • Sample

    241111-jtdaqazjem

  • MD5

    20b5fa2164bb06e893d3ad87c6adecda

  • SHA1

    e3cb7dc114bb5035398ce42612b97f68aa8c5703

  • SHA256

    31fdb6cdefcce6460f466337bc2ffd1090d01b05f4122a1a3c3a6a3956cc149e

  • SHA512

    ae22d147ed2a0ffe3b9640bbded449fc81520762bceaa1ab3637c2679d528c82d8dc5b52a237d1adb444599fc46e1071839616f1d022a083c3cc2df479fe99cb

  • SSDEEP

    12288:xSgreJ4MJ8i7EB37Wk4pi5W0mPpg9VfI:xMJ4MJXwN77C0mPpa

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      31fdb6cdefcce6460f466337bc2ffd1090d01b05f4122a1a3c3a6a3956cc149e

    • Size

      446KB

    • MD5

      20b5fa2164bb06e893d3ad87c6adecda

    • SHA1

      e3cb7dc114bb5035398ce42612b97f68aa8c5703

    • SHA256

      31fdb6cdefcce6460f466337bc2ffd1090d01b05f4122a1a3c3a6a3956cc149e

    • SHA512

      ae22d147ed2a0ffe3b9640bbded449fc81520762bceaa1ab3637c2679d528c82d8dc5b52a237d1adb444599fc46e1071839616f1d022a083c3cc2df479fe99cb

    • SSDEEP

      12288:xSgreJ4MJ8i7EB37Wk4pi5W0mPpg9VfI:xMJ4MJXwN77C0mPpa

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks