Overview

overview

10

Static

static

1

Снимо...51.png

windows7-x64

10

Resubmissions

29/04/2024, 09:09

240429-k4h5dseh37 6

29/04/2024, 09:01

240429-ky84mafb8z 10

29/04/2024, 08:51

240429-kslfdaef64 8

Sharing

Copy URL Twitter E-mail

General

  • Target

    Снимок экрана от 2024-04-28 20-29-51.png

  • Size

    857KB

  • Sample

    240429-ky84mafb8z

  • MD5

    6b2f01e16e84ce712467820a28127de0

  • SHA1

    37b2b6db46fa47e29058fd0709cc63fd07886b7f

  • SHA256

    859c9c4f521e1e5ede976e935de4b23bcc2f8c2083442322d58e8e17ddc58119

  • SHA512

    122800c70c419d2fcc41378553d873d8adb214875215232ed92ac504a26c37c86ae66a695aba1a6ea1a3658a192588490931c5980e81057439f9801f99608f1c

  • SSDEEP

    24576:V/MIyBkF6/gWNFqd0sPrbU/qebafQMCcVNbyjEGyHNGhH7/V:p7yCA/gaFqd0M3XWOQMDV1y6HN+7/V

Score
10/10
redlinezgratinfostealerrat

Malware Config

Targets

    • Target

      Снимок экрана от 2024-04-28 20-29-51.png

    • Size

      857KB

    • MD5

      6b2f01e16e84ce712467820a28127de0

    • SHA1

      37b2b6db46fa47e29058fd0709cc63fd07886b7f

    • SHA256

      859c9c4f521e1e5ede976e935de4b23bcc2f8c2083442322d58e8e17ddc58119

    • SHA512

      122800c70c419d2fcc41378553d873d8adb214875215232ed92ac504a26c37c86ae66a695aba1a6ea1a3658a192588490931c5980e81057439f9801f99608f1c

    • SSDEEP

      24576:V/MIyBkF6/gWNFqd0sPrbU/qebafQMCcVNbyjEGyHNGhH7/V:p7yCA/gaFqd0M3XWOQMDV1y6HN+7/V

    Score
    10/10
    redlinezgratinfostealerrat

    • Detect ZGRat V1

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • ZGRat

      ZGRat is remote access trojan written in C#.

      ratzgrat

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks