General

  • Target

    2edaa9abc4ef343093da2a3faf1407407b8dea252300d44c868ac018a59e5eaeN

  • Size

    410KB

  • Sample

    241113-z4ngfazclk

  • MD5

    6e59f755b3cda4f838b93d3dd93a1db0

  • SHA1

    e67d134a1c8f40641c9ebb6d05792b6214d80f5f

  • SHA256

    2edaa9abc4ef343093da2a3faf1407407b8dea252300d44c868ac018a59e5eae

  • SHA512

    735e293413f812f1215e3e3a8eefceb6328ce16e568a803f6eb6c7ddd760b989f20d09699b187840768e6126cee9fd31a5c8019c0a7d91090fc2565f8f1fbde5

  • SSDEEP

    6144:G/H4UvwYogRhavtZSh7URusIGG+xdWnPbc4dtHMWJn:mYDQwVMh4IGG+xdWDc4dtHFl

Malware Config

Extracted

Family

redline

Botnet

170

C2

45.9.20.240:46257

Attributes
  • auth_value

    73f905977a8199ea3d396a0a7d0ae6c8

Targets

    • Target

      2edaa9abc4ef343093da2a3faf1407407b8dea252300d44c868ac018a59e5eaeN

    • Size

      410KB

    • MD5

      6e59f755b3cda4f838b93d3dd93a1db0

    • SHA1

      e67d134a1c8f40641c9ebb6d05792b6214d80f5f

    • SHA256

      2edaa9abc4ef343093da2a3faf1407407b8dea252300d44c868ac018a59e5eae

    • SHA512

      735e293413f812f1215e3e3a8eefceb6328ce16e568a803f6eb6c7ddd760b989f20d09699b187840768e6126cee9fd31a5c8019c0a7d91090fc2565f8f1fbde5

    • SSDEEP

      6144:G/H4UvwYogRhavtZSh7URusIGG+xdWnPbc4dtHMWJn:mYDQwVMh4IGG+xdWDc4dtHFl

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks