redline | 0dfc3040d5379938e2e20165bf67d6822668b018894488a00a7572ab38428588 | Triage

Submit
Reports

Overview

overview

Static

static

bc2ff2eb33...03.exe

windows7-x64

bc2ff2eb33...03.exe

windows10-2004-x64

Sharing

General

Target

bc2ff2eb335a461478e3f34cbbc5dda052ae7918eb88822fceafd90157cbac03.zip
Size

43KB
Sample

230328-kvbc7abg41
MD5

10c835af4242531c365cdb9477a654a2
SHA1

d7529a95c41979e6bc8407ec09b559da790c45cf
SHA256

0dfc3040d5379938e2e20165bf67d6822668b018894488a00a7572ab38428588
SHA512

3c40aed2fc6a35be0e929e2b4d7baaaf9e657c412b307b3a51e54d873c290891edeac9ac97f3ba474af15bdeeb76c6db38d674a1822c04eb092b2075808747f3
SSDEEP

768:Z0rOblD4544yq7yVDOFvaDwWb+hNw9aDrSS10qtkuJvfPEMvDG+5q+CxxEqCNykZ:ZR85byq7DsSwayqtxJnc5+5RCUPNyixz

Score

10^/10

redline sectoprat alice infostealer rat trojan

Static task

static1

alice redline sectoprat

4 signatures

Behavioral task

behavioral1

Sample

bc2ff2eb335a461478e3f34cbbc5dda052ae7918eb88822fceafd90157cbac03.exe

Resource

win7-20230220-en

redline sectoprat alice infostealer rat trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

bc2ff2eb335a461478e3f34cbbc5dda052ae7918eb88822fceafd90157cbac03.exe

Resource

win10v2004-20230220-en

redline sectoprat alice infostealer rat trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

alice

C2

laptop-senp05hg.tailebd9d.ts.net:38192

Targets

- Target
  
  bc2ff2eb335a461478e3f34cbbc5dda052ae7918eb88822fceafd90157cbac03
- Size
  
  95KB
- MD5
  
  a1f1576ea9d02b0ba28f62fae150550c
- SHA1
  
  3ff31d9c3a27c9e30300eee7191d331d97d83d39
- SHA256
  
  bc2ff2eb335a461478e3f34cbbc5dda052ae7918eb88822fceafd90157cbac03
- SHA512
  
  ca2b11c2f511c62eea798f23ae3ddcaca2176c0e128de73323a9983065bfb36aaffdbbff0d5c13f17875d0e6819e00c6a75a1ac791477d14bd51cb55b356279a
- SSDEEP
  
  1536:aqsWuqBXlbG6jejoigIL43Ywzi0Zb78ivombfexv0ujXyyed2vtmulgS6pw:IlilYL+zi0ZbYe1g0ujyzdnw
Score

10^/10

redline sectoprat alice infostealer rat trojan
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- SectopRAT
  SectopRAT is a remote access trojan first seen in November 2019.
  trojan rat sectoprat
- SectopRAT payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

aliceredlinesectoprat

behavioral1

redlinesectoprataliceinfostealerrattrojan

behavioral2

redlinesectoprataliceinfostealerrattrojan

© 2018-2024

Terms | Privacy