redline | 645e55b1ed6e8bdfcf82bd2abf82cda4c3539c3639d850bdbd4602e3f4d6a638 | Triage

Submit
Reports

Overview

overview

Static

static

buildnewbuild.exe

windows7-x64

buildnewbuild.exe

windows10-2004-x64

Sharing

General

Target

buildnewbuild.exe
Size

95KB
Sample

230901-knpx1adf7s
MD5

a71371d1a53f284a6421ba0022e00e91
SHA1

6de1622680d4eec098eaeec19bc4eeaefb4f8346
SHA256

645e55b1ed6e8bdfcf82bd2abf82cda4c3539c3639d850bdbd4602e3f4d6a638
SHA512

3e0560cd2bb9b5b83052654b099a7f46d6fc260e98e56bd535ec1cd50c6d5694c6d4cbf9ded03755373c2bdbfdee7418236f5defb7bdfefacc02776553231aa2
SSDEEP

1536:NqsIoqu3lbG6jejoigIH43Ywzi0Zb78ivombfexv0ujXyyed2PtmulgS6pIl:7Z1FYH+zi0ZbYe1g0ujyzd/I

Score

10^/10

redline sectoprat @shadowcloud infostealer rat trojan

Static task

static1

@shadowcloud redline sectoprat

5 signatures

Behavioral task

behavioral1

Sample

buildnewbuild.exe

Resource

win7-20230831-en

redline sectoprat @shadowcloud infostealer rat trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

buildnewbuild.exe

Resource

win10v2004-20230831-en

redline sectoprat @shadowcloud infostealer rat trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

@ShadowCloud

C2

15.228.188.221:4483

Targets

- Target
  
  buildnewbuild.exe
- Size
  
  95KB
- MD5
  
  a71371d1a53f284a6421ba0022e00e91
- SHA1
  
  6de1622680d4eec098eaeec19bc4eeaefb4f8346
- SHA256
  
  645e55b1ed6e8bdfcf82bd2abf82cda4c3539c3639d850bdbd4602e3f4d6a638
- SHA512
  
  3e0560cd2bb9b5b83052654b099a7f46d6fc260e98e56bd535ec1cd50c6d5694c6d4cbf9ded03755373c2bdbfdee7418236f5defb7bdfefacc02776553231aa2
- SSDEEP
  
  1536:NqsIoqu3lbG6jejoigIH43Ywzi0Zb78ivombfexv0ujXyyed2PtmulgS6pIl:7Z1FYH+zi0ZbYe1g0ujyzd/I
Score

10^/10

redline sectoprat @shadowcloud infostealer rat trojan
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- SectopRAT
  SectopRAT is a remote access trojan first seen in November 2019.
  trojan rat sectoprat
- SectopRAT payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

@shadowcloudredlinesectoprat

behavioral1

redlinesectoprat@shadowcloudinfostealerrattrojan

behavioral2

redlinesectoprat@shadowcloudinfostealerrattrojan

© 2018-2025

Terms | Privacy