General

  • Target

    cda73098ac7c8b9f5df75b249f27615a4d6dc75ee68bbb33cc8b06217e83fcbb

  • Size

    287KB

  • Sample

    241111-k2hqvawmds

  • MD5

    bc686f044e06b4854f613a6fbde5a128

  • SHA1

    c6b5eec18ac628b99ea802b45458d89ef444e079

  • SHA256

    cda73098ac7c8b9f5df75b249f27615a4d6dc75ee68bbb33cc8b06217e83fcbb

  • SHA512

    860580120454349f50cd5b232ee91027e7b8df7eb19931bc7143fd83986259d857a0f9d952a72af92f413eabe2e72cd0aea7a32029ffe5a789b8ed9812b95335

  • SSDEEP

    6144:Z8qL1ObqYbAiSCTmxTPj/0rtsvBS+5pTuzbgwuko6OB:mqcbquAGQTPgrtscURunnro6O

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      cda73098ac7c8b9f5df75b249f27615a4d6dc75ee68bbb33cc8b06217e83fcbb

    • Size

      287KB

    • MD5

      bc686f044e06b4854f613a6fbde5a128

    • SHA1

      c6b5eec18ac628b99ea802b45458d89ef444e079

    • SHA256

      cda73098ac7c8b9f5df75b249f27615a4d6dc75ee68bbb33cc8b06217e83fcbb

    • SHA512

      860580120454349f50cd5b232ee91027e7b8df7eb19931bc7143fd83986259d857a0f9d952a72af92f413eabe2e72cd0aea7a32029ffe5a789b8ed9812b95335

    • SSDEEP

      6144:Z8qL1ObqYbAiSCTmxTPj/0rtsvBS+5pTuzbgwuko6OB:mqcbquAGQTPgrtscURunnro6O

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks