General
-
Target
9c1660951ab93211cdbdd6af29616697
-
Size
315KB
-
Sample
231219-zqwkwsabam
-
MD5
9c1660951ab93211cdbdd6af29616697
-
SHA1
df38ca3f03726c0369d669f6c49b9855eb52c98a
-
SHA256
ed34ffefc68f798ad3cf4972db1f0c07a0f4ca1ebaef4a5d99c8a508eac6d0a8
-
SHA512
532df8351733d62b32000f5d73084bb0ea849b6c39b2937c1db076a7e8d7ada50ac3bde48e6c42628b4ac643d1e80778d2181e3b2b4a461ab95b88e5eecb8b92
-
SSDEEP
6144:FzHKM1HtwRz9pcMFtXv+CVirZ6BXetXztOjRItwBn0Gcs:FzHKM1eRzxfXxVs4BX80jRowBnDX
Malware Config
Extracted
redline
UTS
45.9.20.20:13441
Targets
-
-
Target
9c1660951ab93211cdbdd6af29616697
-
Size
315KB
-
MD5
9c1660951ab93211cdbdd6af29616697
-
SHA1
df38ca3f03726c0369d669f6c49b9855eb52c98a
-
SHA256
ed34ffefc68f798ad3cf4972db1f0c07a0f4ca1ebaef4a5d99c8a508eac6d0a8
-
SHA512
532df8351733d62b32000f5d73084bb0ea849b6c39b2937c1db076a7e8d7ada50ac3bde48e6c42628b4ac643d1e80778d2181e3b2b4a461ab95b88e5eecb8b92
-
SSDEEP
6144:FzHKM1HtwRz9pcMFtXv+CVirZ6BXetXztOjRItwBn0Gcs:FzHKM1eRzxfXxVs4BX80jRowBnDX
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT
SectopRAT is a remote access trojan first seen in November 2019.
-
SectopRAT payload
-