redline | 065d26691736150f3643cb4bd06e991f62160406936d9053a82af11b8d0272ff | Triage

Submit
Reports

Overview

overview

Static

static

3

17453605e5...39.exe

windows7-x64

17453605e5...39.exe

windows10-2004-x64

Sharing

General

Target

17453605e54baa73884d6dce7d57d439
Size

390KB
Sample

231221-2ktkfsechl
MD5

17453605e54baa73884d6dce7d57d439
SHA1

0153451591fb1b7a5dadaf8206265c094b9f15ad
SHA256

065d26691736150f3643cb4bd06e991f62160406936d9053a82af11b8d0272ff
SHA512

8e0472691fdbd700fbc28ed4e66cdd11696df1fb70d22a35876c936484fe99acc8038683f938047493b71603012aebdd0b4fbb192e57d66d6b0e873a8d727de3
SSDEEP

6144:9ZTiQWI+x4FE1Y6MSgUguVWOe2L268Ld3fhQfSrFWJIo/Z1W1:jLWI+x4wYx5RuVMC26G3r+/Z1

Score

10^/10

redline sectoprat pab123 infostealer rat trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

17453605e54baa73884d6dce7d57d439.exe

Resource

win7-20231215-en

redline sectoprat pab123 infostealer rat trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

17453605e54baa73884d6dce7d57d439.exe

Resource

win10v2004-20231215-en

redline sectoprat pab123 infostealer rat trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

pab123

C2

45.14.49.169:22411

Targets

- Target
  
  17453605e54baa73884d6dce7d57d439
- Size
  
  390KB
- MD5
  
  17453605e54baa73884d6dce7d57d439
- SHA1
  
  0153451591fb1b7a5dadaf8206265c094b9f15ad
- SHA256
  
  065d26691736150f3643cb4bd06e991f62160406936d9053a82af11b8d0272ff
- SHA512
  
  8e0472691fdbd700fbc28ed4e66cdd11696df1fb70d22a35876c936484fe99acc8038683f938047493b71603012aebdd0b4fbb192e57d66d6b0e873a8d727de3
- SSDEEP
  
  6144:9ZTiQWI+x4FE1Y6MSgUguVWOe2L268Ld3fhQfSrFWJIo/Z1W1:jLWI+x4wYx5RuVMC26G3r+/Z1
Score

10^/10

redline sectoprat pab123 infostealer rat trojan
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- SectopRAT
  SectopRAT is a remote access trojan first seen in November 2019.
  trojan rat sectoprat
- SectopRAT payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinesectopratpab123infostealerrattrojan

behavioral2

redlinesectopratpab123infostealerrattrojan

© 2018-2024

Terms | Privacy