redline | aa212b5f143110b24b2c5fb003586c78a04549159530c7526fec2081fc358ab0 | Triage

Submit
Reports

Overview

overview

Static

static

3

308f912534...f4.exe

windows7-x64

308f912534...f4.exe

windows10-2004-x64

Sharing

General

Target

308f912534c55aa63b0c51fbf332a1f4
Size

310KB
Sample

231231-k9t4vahdcq
MD5

308f912534c55aa63b0c51fbf332a1f4
SHA1

445be8a49cb88094431070eb1864a4c35a11d775
SHA256

aa212b5f143110b24b2c5fb003586c78a04549159530c7526fec2081fc358ab0
SHA512

482ecf367661f99143eb31fd40941b2ef2e91c7eac5fd7a2fbd45f1c85524af74d5c678a2aa579547a5f588fe4a9214c35c484575f18d69eb7d653789ae2b688
SSDEEP

6144:8/ZVJGFSeHfOWoFiSUWsrfBh9xS34zDh/FGtGCIUrqFVU:e/GMeHfOWodg9h9U34zDh/FGtX5r2VU

Score

10^/10

redline sectoprat pub infostealer rat trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

308f912534c55aa63b0c51fbf332a1f4.exe

Resource

win7-20231215-en

redline sectoprat pub infostealer rat trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

308f912534c55aa63b0c51fbf332a1f4.exe

Resource

win10v2004-20231215-en

redline sectoprat pub infostealer rat trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

pub

C2

193.56.146.78:51487

Targets

- Target
  
  308f912534c55aa63b0c51fbf332a1f4
- Size
  
  310KB
- MD5
  
  308f912534c55aa63b0c51fbf332a1f4
- SHA1
  
  445be8a49cb88094431070eb1864a4c35a11d775
- SHA256
  
  aa212b5f143110b24b2c5fb003586c78a04549159530c7526fec2081fc358ab0
- SHA512
  
  482ecf367661f99143eb31fd40941b2ef2e91c7eac5fd7a2fbd45f1c85524af74d5c678a2aa579547a5f588fe4a9214c35c484575f18d69eb7d653789ae2b688
- SSDEEP
  
  6144:8/ZVJGFSeHfOWoFiSUWsrfBh9xS34zDh/FGtGCIUrqFVU:e/GMeHfOWodg9h9U34zDh/FGtX5r2VU
Score

10^/10

redline sectoprat pub infostealer rat trojan
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- SectopRAT
  SectopRAT is a remote access trojan first seen in November 2019.
  trojan rat sectoprat
- SectopRAT payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinesectopratpubinfostealerrattrojan

behavioral2

redlinesectopratpubinfostealerrattrojan

© 2018-2024

Terms | Privacy