Extracted

• • Target

    2f707d23dfa54d9305e16e718f82fb34.exe

  • Size

    95KB

  • MD5

    2f707d23dfa54d9305e16e718f82fb34

  • SHA1

    3e6011424f00c9be64e589551f45dfdc44b7e799

  • SHA256

    adc93b9ee4d884423d14c5b33635b75235f46542f3a5e73934d263c67d8f3269

  • SHA512

    c1b0f0161c1ef217c0bbdc9bafb2da713c3f8f613e17951789879a40053ba9598bbac90ac413ce0e128e0a2f75336994a0ba58f044b09f9c7f89fdff1dfd083b

  • SSDEEP

    1536:iqsePqBezlbG6jejoigIk43Ywzi0Zb78ivombfexv0ujXyyed2h3teulgS6p4:AAmeZYk+zi0ZbYe1g0ujyzdd4

  Score

  10^/10

  redlinesectopratcheatinfostealerratspywarestealertrojan

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • SectopRAT

    SectopRAT is a remote access trojan first seen in November 2019.

    trojanratsectoprat

  • SectopRAT payload

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware
  behavioral1behavioral2