redline

General

Target

7a23a664673dcbde202217eb55d531b6_JaffaCakes118
Size

1.1MB
Sample

241028-savkbssaka
MD5

7a23a664673dcbde202217eb55d531b6
SHA1

ed299494c15f01630875d96972ca21c36ebf0304
SHA256

edc3e23934d50165f87e276b405ba0e967f06c0c569b344315fe3cce42e7a0c5
SHA512

adc16cbfd93327edbea07b4c959f51bad08f6a964e4edb3c225c0c2e6fa1527c928c4edc85480ea7a91f5a78cb17b19c8c47ebc04cd65dca411b32adf64e32d6
SSDEEP

24576:PtBlRfGG8NvnnerZZfL2D+OPoF54gEu72H0gXXfr143ZcV:rvfsNodL2D+OAFmcY4w

Score

10^/10

Malware Config

Extracted

Family

redline

Botnet

@freezj

C2

185.209.22.181:34925

Targets

- Target
  
  7a23a664673dcbde202217eb55d531b6_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  7a23a664673dcbde202217eb55d531b6
- SHA1
  
  ed299494c15f01630875d96972ca21c36ebf0304
- SHA256
  
  edc3e23934d50165f87e276b405ba0e967f06c0c569b344315fe3cce42e7a0c5
- SHA512
  
  adc16cbfd93327edbea07b4c959f51bad08f6a964e4edb3c225c0c2e6fa1527c928c4edc85480ea7a91f5a78cb17b19c8c47ebc04cd65dca411b32adf64e32d6
- SSDEEP
  
  24576:PtBlRfGG8NvnnerZZfL2D+OPoF54gEu72H0gXXfr143ZcV:rvfsNodL2D+OAFmcY4w
Score

10^/10

redline sectoprat @freezj discovery infostealer rat trojan
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- Redline family
  redline
- SectopRAT
  SectopRAT is a remote access trojan first seen in November 2019.
  trojan rat sectoprat
- SectopRAT payload
- Sectoprat family
  sectoprat
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Redline family

SectopRAT

SectopRAT payload

Sectoprat family

Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2