redline | 53e9b55e8884a0f5734af7f69ba5b565bcd6cda0615d3e1ed97ee9296ed9c2f5 | Triage

Submit
Reports

Overview

overview

Static

static

3

e89e203d78...18.exe

windows7-x64

e89e203d78...18.exe

windows10-2004-x64

Sharing

General

Target

e89e203d78f37985b615aef3e1b22bc9_JaffaCakes118
Size

353KB
Sample

240408-2vqasahf2x
MD5

e89e203d78f37985b615aef3e1b22bc9
SHA1

77b85c2c7d0989b1c2a2b59e21652d8d1ce7491b
SHA256

53e9b55e8884a0f5734af7f69ba5b565bcd6cda0615d3e1ed97ee9296ed9c2f5
SHA512

3264d7d0b3676f144a1d64b47b9e023b08f9c13681c3339ecbd4a5627930b3e113f41468e3d8207da3310d7bd1627e27d573493536c5c6b8461b922f150a56f6
SSDEEP

6144:y+OJ3zvr1e/QUFo2cViTMeo8G9vfWgoiT96s25XLHPIb3+zM3c6:s5zvrOQU/ckoKGx/j6/bV6

Score

10^/10

redline sectoprat 2 infostealer rat trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e89e203d78f37985b615aef3e1b22bc9_JaffaCakes118.exe

Resource

win7-20240221-en

redline sectoprat 2 infostealer rat trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

e89e203d78f37985b615aef3e1b22bc9_JaffaCakes118.exe

Resource

win10v2004-20240226-en

redline sectoprat 2 infostealer rat trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

2

C2

193.124.128.47:35178

Targets

- Target
  
  e89e203d78f37985b615aef3e1b22bc9_JaffaCakes118
- Size
  
  353KB
- MD5
  
  e89e203d78f37985b615aef3e1b22bc9
- SHA1
  
  77b85c2c7d0989b1c2a2b59e21652d8d1ce7491b
- SHA256
  
  53e9b55e8884a0f5734af7f69ba5b565bcd6cda0615d3e1ed97ee9296ed9c2f5
- SHA512
  
  3264d7d0b3676f144a1d64b47b9e023b08f9c13681c3339ecbd4a5627930b3e113f41468e3d8207da3310d7bd1627e27d573493536c5c6b8461b922f150a56f6
- SSDEEP
  
  6144:y+OJ3zvr1e/QUFo2cViTMeo8G9vfWgoiT96s25XLHPIb3+zM3c6:s5zvrOQU/ckoKGx/j6/bV6
Score

10^/10

redline sectoprat 2 infostealer rat trojan
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- SectopRAT
  SectopRAT is a remote access trojan first seen in November 2019.
  trojan rat sectoprat
- SectopRAT payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinesectoprat2infostealerrattrojan

behavioral2

redlinesectoprat2infostealerrattrojan

© 2018-2024

Terms | Privacy