Extracted

• • Target

    OneTapV4.exe

  • Size

    1.7MB

  • MD5

    3fcce8b9e2b2659fa46aaaa5e007082d

  • SHA1

    15ea770a663418c0d13d256510e349818275af11

  • SHA256

    da9fab8c0b241f3f2c6553cdb898a76b90d14ed694136a6319d2017e1e5f7d57

  • SHA512

    b3b4377406d7bedc85d62e1a4af0f4b8db6c08a69359e9109d2769ad0027517fc8191f47ff99cd9bf35b8e8fc87435e7e9220bc4ea086051715036e446f8ab91

  • SSDEEP

    24576:p0nGasDahabSu/hqE1QG+Q/edFdka2fffaOL7A5jPWVJJ/WJkxChx4I5W:bDmWpfD45DWvJ3xChxPU

  Score

  10^/10

  redlinesectoprat19/08discoveryinfostealerrattrojan

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • SectopRAT

    SectopRAT is a remote access trojan first seen in November 2019.

    trojanratsectoprat

  • SectopRAT payload

  • Sectoprat family

    sectoprat

  • Suspicious use of SetThreadContext

  behavioral1behavioral2