Overview

overview

10

Static

static

3

13cccb1933...cs.exe

windows7-x64

10

13cccb1933...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    13cccb19332edc17ab4556e6926a7d50_NeikiAnalytics

  • Size

    361KB

  • Sample

    240509-2lwffaea53

  • MD5

    13cccb19332edc17ab4556e6926a7d50

  • SHA1

    9fb167b81e1da861df60359e8b76de5aecfab13a

  • SHA256

    9658029f65ab4cb80f29f7d9c7787488673cb5a62478e0e3d72fc60bc9437062

  • SHA512

    f370546ff077a49e8e7eb87da327e7cbd8ed1778e6d9b5e3411f4fee8852017a301e23c045b55730d9617058d0c2fdf7543446ab7e51ac0461d17ab82f0f0a99

  • SSDEEP

    6144:EGDvCqltVlI1ezGpfscLczzb5hMa2668/KXrO:iqltXI1ezC0cIznMP8/K

Score
10/10
redlinezgratinfostealerrat

Malware Config

Targets

    • Target

      13cccb19332edc17ab4556e6926a7d50_NeikiAnalytics

    • Size

      361KB

    • MD5

      13cccb19332edc17ab4556e6926a7d50

    • SHA1

      9fb167b81e1da861df60359e8b76de5aecfab13a

    • SHA256

      9658029f65ab4cb80f29f7d9c7787488673cb5a62478e0e3d72fc60bc9437062

    • SHA512

      f370546ff077a49e8e7eb87da327e7cbd8ed1778e6d9b5e3411f4fee8852017a301e23c045b55730d9617058d0c2fdf7543446ab7e51ac0461d17ab82f0f0a99

    • SSDEEP

      6144:EGDvCqltVlI1ezGpfscLczzb5hMa2668/KXrO:iqltXI1ezC0cIznMP8/K

    Score
    10/10
    redlinezgratinfostealerrat

    • Detect ZGRat V1

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • ZGRat

      ZGRat is remote access trojan written in C#.

      ratzgrat
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks