redline | 2fd37ed834b6cd3747f1017ee09b3f97170245f59f9f2ed37c15b62580623319 | Triage

Submit
Reports

Overview

overview

Static

static

1

crypted.exe

windows10-2004-x64

Sharing

General

Target

crypted.exe
Size

412KB
Sample

240209-tmsf6see47
MD5

3c9da20ad78d24df53b661b7129959e0
SHA1

e7956e819cc1d2abafb2228a10cf22b9391fb611
SHA256

2fd37ed834b6cd3747f1017ee09b3f97170245f59f9f2ed37c15b62580623319
SHA512

1a02da1652a2c00df33eceda0706adebb5a5f1c3c05e30a09857c94d2fbb93e570f768af5d6648d3a5d11eea3b5c4b1ceb9393fc05248f1eefd96e17f3bbe1b4
SSDEEP

12288:eDmrLy4dMMrASo/n7zUvOTdlzAarl6LmH6RPz5N:um9MMo7zUKdlzlJ62qPP

Score

10^/10

redline zgrat infostealer rat

Static task

static1

Behavioral task

behavioral1

Sample

crypted.exe

Resource

win10v2004-20231222-en

redline zgrat infostealer rat

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  crypted.exe
- Size
  
  412KB
- MD5
  
  3c9da20ad78d24df53b661b7129959e0
- SHA1
  
  e7956e819cc1d2abafb2228a10cf22b9391fb611
- SHA256
  
  2fd37ed834b6cd3747f1017ee09b3f97170245f59f9f2ed37c15b62580623319
- SHA512
  
  1a02da1652a2c00df33eceda0706adebb5a5f1c3c05e30a09857c94d2fbb93e570f768af5d6648d3a5d11eea3b5c4b1ceb9393fc05248f1eefd96e17f3bbe1b4
- SSDEEP
  
  12288:eDmrLy4dMMrASo/n7zUvOTdlzAarl6LmH6RPz5N:um9MMo7zUKdlzlJ62qPP
Score

10^/10

redline zgrat infostealer rat
- Detect ZGRat V1
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- ZGRat
  ZGRat is remote access trojan written in C#.
  rat zgrat
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinezgratinfostealerrat

© 2018-2024

Terms | Privacy