redline | 40645fca08231170a8dc53b8d38e2e90795696b01b2e7399e8e0f316e91f30f7 | Triage

Submit
Reports

Overview

overview

Static

static

3

90b23b79bc...2b.exe

windows7-x64

90b23b79bc...2b.exe

windows10-2004-x64

Sharing

General

Target

90b23b79bc42f1bf7d6b4c73cdcef82b
Size

386KB
Sample

231226-1hqv4sdhh6
MD5

90b23b79bc42f1bf7d6b4c73cdcef82b
SHA1

6595189e36c5c06ee0e6dd5949ee9b6bfacfb2e8
SHA256

40645fca08231170a8dc53b8d38e2e90795696b01b2e7399e8e0f316e91f30f7
SHA512

4c170559f844db9553a484dfa3821668fcd6870c39d886fefed33c68e970bd740782fe034b6afdf4acc997fa0cd468f0bd1a970560353adab7826bc5102c013d
SSDEEP

6144:QyfcyAS1tHbP09b+0UL+YUU0CrUDokvR0+lL9KQ4oeLM1tuaOUAz:cTS1BI9b+4YtbovvR0O4ryoaOUA

Score

10^/10

redline sectoprat pub infostealer rat trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

90b23b79bc42f1bf7d6b4c73cdcef82b.exe

Resource

win7-20231129-en

redline sectoprat pub infostealer rat trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

90b23b79bc42f1bf7d6b4c73cdcef82b.exe

Resource

win10v2004-20231215-en

redline sectoprat pub infostealer rat trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

PUB

C2

185.215.113.45:41009

Targets

- Target
  
  90b23b79bc42f1bf7d6b4c73cdcef82b
- Size
  
  386KB
- MD5
  
  90b23b79bc42f1bf7d6b4c73cdcef82b
- SHA1
  
  6595189e36c5c06ee0e6dd5949ee9b6bfacfb2e8
- SHA256
  
  40645fca08231170a8dc53b8d38e2e90795696b01b2e7399e8e0f316e91f30f7
- SHA512
  
  4c170559f844db9553a484dfa3821668fcd6870c39d886fefed33c68e970bd740782fe034b6afdf4acc997fa0cd468f0bd1a970560353adab7826bc5102c013d
- SSDEEP
  
  6144:QyfcyAS1tHbP09b+0UL+YUU0CrUDokvR0+lL9KQ4oeLM1tuaOUAz:cTS1BI9b+4YtbovvR0O4ryoaOUA
Score

10^/10

redline sectoprat pub infostealer rat trojan
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- SectopRAT
  SectopRAT is a remote access trojan first seen in November 2019.
  trojan rat sectoprat
- SectopRAT payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinesectopratpubinfostealerrattrojan

behavioral2

redlinesectopratpubinfostealerrattrojan

© 2018-2024

Terms | Privacy