redline | 070512301a6925a38618df6238a3bf06ab70eacbcaf7842f48f1de45ab85d30d | Triage

Submit
Reports

Overview

overview

Static

static

3

1214ff60cd...56.exe

windows7-x64

1214ff60cd...56.exe

windows10-2004-x64

Sharing

General

Target

1214ff60cd625a2746c9d7b933785256
Size

249KB
Sample

231221-2ad21scggj
MD5

1214ff60cd625a2746c9d7b933785256
SHA1

bb7f14954aabf554d550c87ca7a69f650e5d81db
SHA256

070512301a6925a38618df6238a3bf06ab70eacbcaf7842f48f1de45ab85d30d
SHA512

9b17a87c9ac2a1c1d8043a0b15ce3bba988fdf204d6a7f14275b80d6c1eede4a3c89cf5b0e1cbd8b7bcde214692c67c44b768908bc38f6edea7d6788fd1d13db
SSDEEP

3072:eY3Cd9RH0mcvrvZL/6X6050vXC1TWHag6hFWXQhEkz2cXJO7DSK65nAfdn2D0HZ:2H0NDR6X6suXC1CHpuWXQhkc83SAfdhZ

Score

10^/10

redline sectoprat uts infostealer rat trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

1214ff60cd625a2746c9d7b933785256.exe

Resource

win7-20231215-en

redline sectoprat uts infostealer rat trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

1214ff60cd625a2746c9d7b933785256.exe

Resource

win10v2004-20231215-en

redline sectoprat uts infostealer rat trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

UTS

C2

45.9.20.20:13441

Targets

- Target
  
  1214ff60cd625a2746c9d7b933785256
- Size
  
  249KB
- MD5
  
  1214ff60cd625a2746c9d7b933785256
- SHA1
  
  bb7f14954aabf554d550c87ca7a69f650e5d81db
- SHA256
  
  070512301a6925a38618df6238a3bf06ab70eacbcaf7842f48f1de45ab85d30d
- SHA512
  
  9b17a87c9ac2a1c1d8043a0b15ce3bba988fdf204d6a7f14275b80d6c1eede4a3c89cf5b0e1cbd8b7bcde214692c67c44b768908bc38f6edea7d6788fd1d13db
- SSDEEP
  
  3072:eY3Cd9RH0mcvrvZL/6X6050vXC1TWHag6hFWXQhEkz2cXJO7DSK65nAfdn2D0HZ:2H0NDR6X6suXC1CHpuWXQhkc83SAfdhZ
Score

10^/10

redline sectoprat uts infostealer rat trojan
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- SectopRAT
  SectopRAT is a remote access trojan first seen in November 2019.
  trojan rat sectoprat
- SectopRAT payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinesectopratutsinfostealerrattrojan

behavioral2

redlinesectopratutsinfostealerrattrojan

© 2018-2024

Terms | Privacy