redline | beb207bb5fc6cea9d5872291f8833e986d6a417d2f698a1a7b204d7722976244 | Triage

Submit
Reports

Overview

overview

Static

static

3

045bf78c8a...8e.exe

windows7-x64

045bf78c8a...8e.exe

windows10-2004-x64

Sharing

General

Target

045bf78c8a6c5013de49fe4005199b8e
Size

313KB
Sample

231219-me2ljscch4
MD5

045bf78c8a6c5013de49fe4005199b8e
SHA1

710b7848de780ad33a7d32f541896b3b80d7deb8
SHA256

beb207bb5fc6cea9d5872291f8833e986d6a417d2f698a1a7b204d7722976244
SHA512

e39cbfcb400b6af1af86b3078bcaecfbbead79a1fe23b7fec470ea79a66956aaa0002b83fbefe48f0d823a7b93515c5e627373ca352082a3c3d260541584d5e3
SSDEEP

6144:levtFeYXq5nsLsR/Uihb12I+mXp5n6BLLzFn/qXm9qp0t:lI3/Xq5f/ymz6BfJ/qX8qpq

Score

10^/10

redline sectoprat build1 infostealer rat trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

045bf78c8a6c5013de49fe4005199b8e.exe

Resource

win7-20231215-en

redline sectoprat build1 infostealer rat trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

045bf78c8a6c5013de49fe4005199b8e.exe

Resource

win10v2004-20231215-en

redline sectoprat build1 infostealer rat trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

build1

C2

77.232.36.199:32336

Targets

- Target
  
  045bf78c8a6c5013de49fe4005199b8e
- Size
  
  313KB
- MD5
  
  045bf78c8a6c5013de49fe4005199b8e
- SHA1
  
  710b7848de780ad33a7d32f541896b3b80d7deb8
- SHA256
  
  beb207bb5fc6cea9d5872291f8833e986d6a417d2f698a1a7b204d7722976244
- SHA512
  
  e39cbfcb400b6af1af86b3078bcaecfbbead79a1fe23b7fec470ea79a66956aaa0002b83fbefe48f0d823a7b93515c5e627373ca352082a3c3d260541584d5e3
- SSDEEP
  
  6144:levtFeYXq5nsLsR/Uihb12I+mXp5n6BLLzFn/qXm9qp0t:lI3/Xq5f/ymz6BfJ/qX8qpq
Score

10^/10

redline sectoprat build1 infostealer rat trojan
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- SectopRAT
  SectopRAT is a remote access trojan first seen in November 2019.
  trojan rat sectoprat
- SectopRAT payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinesectopratbuild1infostealerrattrojan

behavioral2

redlinesectopratbuild1infostealerrattrojan

© 2018-2024

Terms | Privacy