redline | 9e7b86c82e51d5aef776a722e26e70b2b75f31ac1d1983f0fcd3d8758a0817e0 | Triage

Submit
Reports

Overview

overview

Static

static

3

a4b6686134...0N.exe

windows7-x64

a4b6686134...0N.exe

windows10-2004-x64

Sharing

General

Target

a4b66861342752f67afade7086674e90N.exe
Size

318KB
Sample

240803-q27ymavdqn
MD5

a4b66861342752f67afade7086674e90
SHA1

b811102853619bc2116fb203c144c375ffa68800
SHA256

9e7b86c82e51d5aef776a722e26e70b2b75f31ac1d1983f0fcd3d8758a0817e0
SHA512

070a71f5355988d1d7e103b5d3617d1dd6946f0919397a4ea9a03692f3260241780c202c734ee8db325fe961dcb19e02de02ed1649da87f8fe57a584de554b2c
SSDEEP

6144:vLchLYmv4hghQ430FWfkzoSaE73IVEYIM:D9mvKDM0FWGfr6E

Score

10^/10

redline sectoprat sewpalpadin discovery infostealer rat trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a4b66861342752f67afade7086674e90N.exe

Resource

win7-20240708-en

redline sectoprat sewpalpadin discovery infostealer rat trojan

windows7-x64

6 signatures

120 seconds

Behavioral task

behavioral2

Sample

a4b66861342752f67afade7086674e90N.exe

Resource

win10v2004-20240802-en

redline sectoprat sewpalpadin discovery infostealer rat trojan

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Extracted

Family

redline

Botnet

SewPalpadin

C2

185.215.113.114:8887

Targets

- Target
  
  a4b66861342752f67afade7086674e90N.exe
- Size
  
  318KB
- MD5
  
  a4b66861342752f67afade7086674e90
- SHA1
  
  b811102853619bc2116fb203c144c375ffa68800
- SHA256
  
  9e7b86c82e51d5aef776a722e26e70b2b75f31ac1d1983f0fcd3d8758a0817e0
- SHA512
  
  070a71f5355988d1d7e103b5d3617d1dd6946f0919397a4ea9a03692f3260241780c202c734ee8db325fe961dcb19e02de02ed1649da87f8fe57a584de554b2c
- SSDEEP
  
  6144:vLchLYmv4hghQ430FWfkzoSaE73IVEYIM:D9mvKDM0FWGfr6E
Score

10^/10

redline sectoprat sewpalpadin discovery infostealer rat trojan
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- SectopRAT
  SectopRAT is a remote access trojan first seen in November 2019.
  trojan rat sectoprat
- SectopRAT payload
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

redlinesectopratsewpalpadindiscoveryinfostealerrattrojan

behavioral2

redlinesectopratsewpalpadindiscoveryinfostealerrattrojan

© 2018-2024

Terms | Privacy