General

  • Target

    9c00c63250228e6e121c939ccb3008cdc63309cc76828ce4623bf1877a5aa43a

  • Size

    433KB

  • Sample

    241111-kxs11sxdjf

  • MD5

    7fc10ab64248589155f4c97b227971e2

  • SHA1

    2e75f93eeb389b0fd2934743dcf4d5d48baf2aff

  • SHA256

    9c00c63250228e6e121c939ccb3008cdc63309cc76828ce4623bf1877a5aa43a

  • SHA512

    9f852a628047b49134fe29d87b7b7dc23c759dd332d8b96b47ad179b602f0896047ee37d942a59a32c4dbdccc64a70b58ba504fc4fc900f77bef2ef6d74b8f53

  • SSDEEP

    6144:gkzT5Nf9ZbDnOgfq1HjKNi+Hn33b8poHwiMc4oKoN3:fT5XZ+gfqdjKNdHn33bAoHwQ4oKM

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      9c00c63250228e6e121c939ccb3008cdc63309cc76828ce4623bf1877a5aa43a

    • Size

      433KB

    • MD5

      7fc10ab64248589155f4c97b227971e2

    • SHA1

      2e75f93eeb389b0fd2934743dcf4d5d48baf2aff

    • SHA256

      9c00c63250228e6e121c939ccb3008cdc63309cc76828ce4623bf1877a5aa43a

    • SHA512

      9f852a628047b49134fe29d87b7b7dc23c759dd332d8b96b47ad179b602f0896047ee37d942a59a32c4dbdccc64a70b58ba504fc4fc900f77bef2ef6d74b8f53

    • SSDEEP

      6144:gkzT5Nf9ZbDnOgfq1HjKNi+Hn33b8poHwiMc4oKoN3:fT5XZ+gfqdjKNdHn33bAoHwQ4oKM

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks