General

  • Target

    465985035e8cacee39c2559fa5f66391847f539108adf542a345d59ea27ed1fe

  • Size

    394KB

  • Sample

    241111-l8hj4axgkk

  • MD5

    f9eeefcc885cb8b0ff1ad1d45bf077f2

  • SHA1

    e1f6fea8ae7e57f2590be29ddb46b3f17471d95f

  • SHA256

    465985035e8cacee39c2559fa5f66391847f539108adf542a345d59ea27ed1fe

  • SHA512

    f8827f21a78666565a7e9758802beadc8b72d63bf53d79be0b473f15989cf45af425abff3878c85571efd5e42c10cc44c50be143127d9471526a12198b59f6ca

  • SSDEEP

    6144:JvY/hfaNsYeaDDHBYolh5nkRAnlEJa7xwZ124+JXerMchss+x1UkUV:iht/a3HuUMRu7xw7f+h/wss+ck

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      465985035e8cacee39c2559fa5f66391847f539108adf542a345d59ea27ed1fe

    • Size

      394KB

    • MD5

      f9eeefcc885cb8b0ff1ad1d45bf077f2

    • SHA1

      e1f6fea8ae7e57f2590be29ddb46b3f17471d95f

    • SHA256

      465985035e8cacee39c2559fa5f66391847f539108adf542a345d59ea27ed1fe

    • SHA512

      f8827f21a78666565a7e9758802beadc8b72d63bf53d79be0b473f15989cf45af425abff3878c85571efd5e42c10cc44c50be143127d9471526a12198b59f6ca

    • SSDEEP

      6144:JvY/hfaNsYeaDDHBYolh5nkRAnlEJa7xwZ124+JXerMchss+x1UkUV:iht/a3HuUMRu7xw7f+h/wss+ck

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks