General

  • Target

    4bec7804b80074fdbf5edb1a253fce1e6b466ab4ac9aa87538ef25aaca41a032

  • Size

    433KB

  • Sample

    241111-mvasrsyblp

  • MD5

    31bf3d22f1edb88dc766017bdbd5131b

  • SHA1

    0a3a9e3dce3f651a5a8de33ecae4c488ef8f3d8a

  • SHA256

    4bec7804b80074fdbf5edb1a253fce1e6b466ab4ac9aa87538ef25aaca41a032

  • SHA512

    03a945d3ce992375456124bfaeba09487b238b4e29ba9e618961f33031d2d594db3fd27e6b9d4ae448f1b7d60ff3cd3a7a6a0bbc9be4bd204be0d49ca57031dc

  • SSDEEP

    12288:A23qDw0q1u4suLA7OTxt05stpu9fobrhJuGHlA:ACqcpZJLA762evuihb

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      4bec7804b80074fdbf5edb1a253fce1e6b466ab4ac9aa87538ef25aaca41a032

    • Size

      433KB

    • MD5

      31bf3d22f1edb88dc766017bdbd5131b

    • SHA1

      0a3a9e3dce3f651a5a8de33ecae4c488ef8f3d8a

    • SHA256

      4bec7804b80074fdbf5edb1a253fce1e6b466ab4ac9aa87538ef25aaca41a032

    • SHA512

      03a945d3ce992375456124bfaeba09487b238b4e29ba9e618961f33031d2d594db3fd27e6b9d4ae448f1b7d60ff3cd3a7a6a0bbc9be4bd204be0d49ca57031dc

    • SSDEEP

      12288:A23qDw0q1u4suLA7OTxt05stpu9fobrhJuGHlA:ACqcpZJLA762evuihb

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks