General

  • Target

    ed94161be05e412bbc756d228e23af65e9b00329a3af64471cb5d87d0d932deb

  • Size

    376KB

  • Sample

    241111-m4gyfaxpex

  • MD5

    7ab6db8160f105a7f87eddeb491da431

  • SHA1

    59e01e693541b8c355526ae97b36fa94f4bbc5ba

  • SHA256

    ed94161be05e412bbc756d228e23af65e9b00329a3af64471cb5d87d0d932deb

  • SHA512

    e22b332a89a6eb4749e993af39f2df6d3bdae50697a6b79c0488aa1aad3269072d7a4a950d85c546c9f6a0d950b5195702f30b2caf86bc80ca20169b5c10a0c8

  • SSDEEP

    6144:K7y+bnr+Op0yN90QEQet819q/r8SEcGoBT5TZrQb36zytBjmK:5MrGy901219qjJzG/76zytBjF

Malware Config

Targets

    • Target

      ed94161be05e412bbc756d228e23af65e9b00329a3af64471cb5d87d0d932deb

    • Size

      376KB

    • MD5

      7ab6db8160f105a7f87eddeb491da431

    • SHA1

      59e01e693541b8c355526ae97b36fa94f4bbc5ba

    • SHA256

      ed94161be05e412bbc756d228e23af65e9b00329a3af64471cb5d87d0d932deb

    • SHA512

      e22b332a89a6eb4749e993af39f2df6d3bdae50697a6b79c0488aa1aad3269072d7a4a950d85c546c9f6a0d950b5195702f30b2caf86bc80ca20169b5c10a0c8

    • SSDEEP

      6144:K7y+bnr+Op0yN90QEQet819q/r8SEcGoBT5TZrQb36zytBjmK:5MrGy901219qjJzG/76zytBjF

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

    • Executes dropped EXE

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks