General

  • Target

    b44afe5ca4e685f81dc94024fd968ae60167bbb033d07.exe

  • Size

    70.1MB

  • Sample

    240825-t38s4atcqh

  • MD5

    60939d210e725112bb16875a41782e03

  • SHA1

    3a5214649ad0c1ca2fa36f0f6522c95d9bd60f09

  • SHA256

    b44afe5ca4e685f81dc94024fd968ae60167bbb033d07cc91171ee155e5fe5b0

  • SHA512

    282fd844e9f9866ad02101b0e50097019e9262cadf4f51b36d4b9243ec1807c247519226713a53c2bd5c501ce7945be1923c1234dde060bd42e52681b65df620

  • SSDEEP

    393216:lWxQN89qQk4adiJCuE2fUCdod+OvqKkZHzXhJ/KTe8uiBUtkc0k3qrsGg4GUo3Np:lWoI7zGh5ahWc3ImH

Malware Config

Targets

    • Target

      b44afe5ca4e685f81dc94024fd968ae60167bbb033d07.exe

    • Size

      70.1MB

    • MD5

      60939d210e725112bb16875a41782e03

    • SHA1

      3a5214649ad0c1ca2fa36f0f6522c95d9bd60f09

    • SHA256

      b44afe5ca4e685f81dc94024fd968ae60167bbb033d07cc91171ee155e5fe5b0

    • SHA512

      282fd844e9f9866ad02101b0e50097019e9262cadf4f51b36d4b9243ec1807c247519226713a53c2bd5c501ce7945be1923c1234dde060bd42e52681b65df620

    • SSDEEP

      393216:lWxQN89qQk4adiJCuE2fUCdod+OvqKkZHzXhJ/KTe8uiBUtkc0k3qrsGg4GUo3Np:lWoI7zGh5ahWc3ImH

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • SectopRAT

      SectopRAT is a remote access trojan first seen in November 2019.

    • SectopRAT payload

    • Executes dropped EXE

MITRE ATT&CK Enterprise v15

Tasks