Extracted

• • Target

    73c6c588e1e97b13b7ba6f4c922c2d76

  • Size

    316KB

  • MD5

    73c6c588e1e97b13b7ba6f4c922c2d76

  • SHA1

    9d1479c0cb6161d3f3cb59da7ebab105d087bf25

  • SHA256

    50d3b68fda2ef87e977cc92bc744516f5d9dc93c2e3f8b2020b695364a52eba9

  • SHA512

    317bc1d1dc41745c128b44f44ddf6a988e130b9edb9cdfd8094ddf3c752f68232d1dc1503d1ff081f6b0b7c1ea26f7d40b33a9a97872381afd374ed1df13ced1

  • SSDEEP

    6144:b6osaMuV1NcUybSsFtE4ZMAb45ogLXax8t9:Xs9uDNc3bSiE4CxTXLt9

  Score

  10^/10

  redlinesectopratscamneinfostealerrattrojan

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • SectopRAT

    SectopRAT is a remote access trojan first seen in November 2019.

    trojanratsectoprat

  • SectopRAT payload

  • Suspicious use of SetThreadContext

  behavioral1behavioral2