General

  • Target

    0c81c2225a82947c6169b337ba348c94922be46d2a295d4638239d010bc08b41

  • Size

    273KB

  • Sample

    241111-jy4y8svpew

  • MD5

    672f2823576d7a767ad872bf92db1eab

  • SHA1

    37d0f3d2dffd394689744aca97e0cb023394e393

  • SHA256

    0c81c2225a82947c6169b337ba348c94922be46d2a295d4638239d010bc08b41

  • SHA512

    5fba278a9ddc43f9df7353d3d1b25b41d641308958d7b8202f60d70ca4df1af78ab908a70ff1ed435273f3a52b9193b2888979a9dca1b8605a8dad06b1880899

  • SSDEEP

    6144:bdqL9TqYimTVI7rSr3n8NJpH0HtDZkuuIgZuUjptNrmCdT6VwLB:ZqJTq0TwQ8NJpH0NFkuyN9frmCde6L

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      0c81c2225a82947c6169b337ba348c94922be46d2a295d4638239d010bc08b41

    • Size

      273KB

    • MD5

      672f2823576d7a767ad872bf92db1eab

    • SHA1

      37d0f3d2dffd394689744aca97e0cb023394e393

    • SHA256

      0c81c2225a82947c6169b337ba348c94922be46d2a295d4638239d010bc08b41

    • SHA512

      5fba278a9ddc43f9df7353d3d1b25b41d641308958d7b8202f60d70ca4df1af78ab908a70ff1ed435273f3a52b9193b2888979a9dca1b8605a8dad06b1880899

    • SSDEEP

      6144:bdqL9TqYimTVI7rSr3n8NJpH0HtDZkuuIgZuUjptNrmCdT6VwLB:ZqJTq0TwQ8NJpH0NFkuyN9frmCde6L

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks