General

  • Target

    7c34d598ab799bbf55f1ca50a7a33716d56946cffd1c71125749ee262ae8eef1

  • Size

    436KB

  • Sample

    241111-kvcw1swlcz

  • MD5

    bb127a139efc436a5941f265ef2dc4f0

  • SHA1

    faef21d9050f9a207ce3653ac9369daa284e5dca

  • SHA256

    7c34d598ab799bbf55f1ca50a7a33716d56946cffd1c71125749ee262ae8eef1

  • SHA512

    43ea8a25dc3014f7ca4ab9da499248862507ab959ec179dc5c359b30887b9a259739c63914d1f4d799fad11d8e0073da2539cb70928537616d675e092f12293d

  • SSDEEP

    6144:X/0waUW+rJNWUeGxIasIAzQ58Kw1s84Ytb12vohdyWCkEq/a172N:dJNteAMISQaK784Ytb1QohdskEq2

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      7c34d598ab799bbf55f1ca50a7a33716d56946cffd1c71125749ee262ae8eef1

    • Size

      436KB

    • MD5

      bb127a139efc436a5941f265ef2dc4f0

    • SHA1

      faef21d9050f9a207ce3653ac9369daa284e5dca

    • SHA256

      7c34d598ab799bbf55f1ca50a7a33716d56946cffd1c71125749ee262ae8eef1

    • SHA512

      43ea8a25dc3014f7ca4ab9da499248862507ab959ec179dc5c359b30887b9a259739c63914d1f4d799fad11d8e0073da2539cb70928537616d675e092f12293d

    • SSDEEP

      6144:X/0waUW+rJNWUeGxIasIAzQ58Kw1s84Ytb12vohdyWCkEq/a172N:dJNteAMISQaK784Ytb1QohdskEq2

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks