redline | 560c34ce1aca1b66dbb15e537e65e9d5b56afc42d5afaadd6dc3f2242fa58cb0 | Triage

Submit
Reports

Overview

overview

Static

static

3

16f0115bb2...56.exe

windows7-x64

16f0115bb2...56.exe

windows10-2004-x64

Sharing

General

Target

16f0115bb21bbbb67a0dd01034468d56
Size

400KB
Sample

231224-2rkwwsfgeq
MD5

16f0115bb21bbbb67a0dd01034468d56
SHA1

942561b3c00a00ad00f3d962757abdc280f50fd2
SHA256

560c34ce1aca1b66dbb15e537e65e9d5b56afc42d5afaadd6dc3f2242fa58cb0
SHA512

257336e489226ca1f2852cbb7f446c0236c0efb098c16941282a777e0656578844dc28f185fa3f9b8fed2728d5cdb354bd0965a2c3014a6c82bc350688ea9580
SSDEEP

6144:pqTuuIVoUO6vrk7PBS3YPgjCk2P4+SQglKsrYASSb2EsVv//NVF4xNeasGR9:u5IV35rgS4Xw1dEwwa2FFFVcNE4

Score

10^/10

redline sectoprat pub infostealer rat trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

16f0115bb21bbbb67a0dd01034468d56.exe

Resource

win7-20231215-en

redline sectoprat pub infostealer rat trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

16f0115bb21bbbb67a0dd01034468d56.exe

Resource

win10v2004-20231215-en

redline sectoprat pub infostealer rat trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

PUB

C2

185.215.113.45:41009

Targets

- Target
  
  16f0115bb21bbbb67a0dd01034468d56
- Size
  
  400KB
- MD5
  
  16f0115bb21bbbb67a0dd01034468d56
- SHA1
  
  942561b3c00a00ad00f3d962757abdc280f50fd2
- SHA256
  
  560c34ce1aca1b66dbb15e537e65e9d5b56afc42d5afaadd6dc3f2242fa58cb0
- SHA512
  
  257336e489226ca1f2852cbb7f446c0236c0efb098c16941282a777e0656578844dc28f185fa3f9b8fed2728d5cdb354bd0965a2c3014a6c82bc350688ea9580
- SSDEEP
  
  6144:pqTuuIVoUO6vrk7PBS3YPgjCk2P4+SQglKsrYASSb2EsVv//NVF4xNeasGR9:u5IV35rgS4Xw1dEwwa2FFFVcNE4
Score

10^/10

redline sectoprat pub infostealer rat trojan
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- SectopRAT
  SectopRAT is a remote access trojan first seen in November 2019.
  trojan rat sectoprat
- SectopRAT payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinesectopratpubinfostealerrattrojan

behavioral2

redlinesectopratpubinfostealerrattrojan

© 2018-2024

Terms | Privacy