redline | 2f1fc9fde3200d0e27ded0ed85907af5d561f356c6bf073febc23d5bfcf408ee | Triage

Submit
Reports

Overview

overview

Static

static

3

1e612d162c...c5.exe

windows7-x64

1e612d162c...c5.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

1e612d162ccd5fecbc1ad6d7ee5378c5
Size

382KB
Sample

231225-a8psmadhck
MD5

1e612d162ccd5fecbc1ad6d7ee5378c5
SHA1

6f88eb2e1239bb6286c3f5eac3a936871376b23e
SHA256

2f1fc9fde3200d0e27ded0ed85907af5d561f356c6bf073febc23d5bfcf408ee
SHA512

9bc3097cb91e41fbd4bd1df80129d2266e93d12988ce3fd514793c8e12ac9dbe6111b5c99343a412246cda6840d8c9df9c84cb9558be4c600c44e346f20424fc
SSDEEP

6144:E3xt1xciMdbh/GscVusLXC4QhIAGBqM4U4ru/05rz7J86HSSA9+dvnYU5fz:E7XcbdbFJcV1C4pAGZyW0dx8gSSI+RYu

Score

10^/10

redline sectoprat cuc infostealer rat trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

1e612d162ccd5fecbc1ad6d7ee5378c5.exe

Resource

win7-20231215-en

redline sectoprat cuc infostealer rat trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

1e612d162ccd5fecbc1ad6d7ee5378c5.exe

Resource

win10v2004-20231222-en

redline sectoprat cuc infostealer rat trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

CUC

C2

185.215.113.45:41009

Targets

- Target
  
  1e612d162ccd5fecbc1ad6d7ee5378c5
- Size
  
  382KB
- MD5
  
  1e612d162ccd5fecbc1ad6d7ee5378c5
- SHA1
  
  6f88eb2e1239bb6286c3f5eac3a936871376b23e
- SHA256
  
  2f1fc9fde3200d0e27ded0ed85907af5d561f356c6bf073febc23d5bfcf408ee
- SHA512
  
  9bc3097cb91e41fbd4bd1df80129d2266e93d12988ce3fd514793c8e12ac9dbe6111b5c99343a412246cda6840d8c9df9c84cb9558be4c600c44e346f20424fc
- SSDEEP
  
  6144:E3xt1xciMdbh/GscVusLXC4QhIAGBqM4U4ru/05rz7J86HSSA9+dvnYU5fz:E7XcbdbFJcV1C4pAGZyW0dx8gSSI+RYu
Score

10^/10

redline sectoprat cuc infostealer rat trojan
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- SectopRAT
  SectopRAT is a remote access trojan first seen in November 2019.
  trojan rat sectoprat
- SectopRAT payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinesectopratcucinfostealerrattrojan

behavioral2

redlinesectopratcucinfostealerrattrojan

© 2018-2025

Terms | Privacy