redline | cf149347cf39386229225de9128d40c7d5cd6c7e0a922bbe1d42f96b39d69864 | Triage

Submit
Reports

Overview

overview

Static

static

3

012dc7a977...94.exe

windows7-x64

012dc7a977...94.exe

windows10-2004-x64

Sharing

General

Target

012dc7a9772612267948c79ab8f52c94
Size

344KB
Sample

231229-xqwjsafdhm
MD5

012dc7a9772612267948c79ab8f52c94
SHA1

8bbb042eef86ef7dad4c3a8e418363afade51ff2
SHA256

cf149347cf39386229225de9128d40c7d5cd6c7e0a922bbe1d42f96b39d69864
SHA512

96f626313e99d5feabcb96638d8fbe8473871c2dddba3107968fb6e469ca2325e83e9dd8cd673e9a0be316066114b9d29a14f8766e4c918101f017e5e57f14bf
SSDEEP

6144:R4qROidWI/GdT2v48u/dsb4QacfhFD+LL30m5owkMDRrMOZKhX48rwxq:FO6WAWTN8tb4Qvfhh+L7Xowh9fKVXEq

Score

10^/10

redline sectoprat upd infostealer rat trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

012dc7a9772612267948c79ab8f52c94.exe

Resource

win7-20231129-en

redline sectoprat upd infostealer rat trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

012dc7a9772612267948c79ab8f52c94.exe

Resource

win10v2004-20231215-en

redline sectoprat upd infostealer rat trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

UPD

C2

193.56.146.78:54955

Targets

- Target
  
  012dc7a9772612267948c79ab8f52c94
- Size
  
  344KB
- MD5
  
  012dc7a9772612267948c79ab8f52c94
- SHA1
  
  8bbb042eef86ef7dad4c3a8e418363afade51ff2
- SHA256
  
  cf149347cf39386229225de9128d40c7d5cd6c7e0a922bbe1d42f96b39d69864
- SHA512
  
  96f626313e99d5feabcb96638d8fbe8473871c2dddba3107968fb6e469ca2325e83e9dd8cd673e9a0be316066114b9d29a14f8766e4c918101f017e5e57f14bf
- SSDEEP
  
  6144:R4qROidWI/GdT2v48u/dsb4QacfhFD+LL30m5owkMDRrMOZKhX48rwxq:FO6WAWTN8tb4Qvfhh+L7Xowh9fKVXEq
Score

10^/10

redline sectoprat upd infostealer rat trojan
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- SectopRAT
  SectopRAT is a remote access trojan first seen in November 2019.
  trojan rat sectoprat
- SectopRAT payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinesectopratupdinfostealerrattrojan

behavioral2

redlinesectopratupdinfostealerrattrojan

© 2018-2024

Terms | Privacy