redline

General

Target

f797858dee578b99852c3896a9ff46f145b859cfed9241de284f1e46469ad2de
Size

319KB
Sample

241108-x5akvsxlcw
MD5

9b12fe1d432226eb42aab29c08c743c0
SHA1

e8eee826b23217787696cebb258656c34e9ef77f
SHA256

f797858dee578b99852c3896a9ff46f145b859cfed9241de284f1e46469ad2de
SHA512

c6aa7e2a534495d60361e481ed607691f3a18550d4537f960ab1e85ccb69a405cbeae98c4c4c733edc9023390d9c9c1d7733e186242062ca41ec07d47478e94e
SSDEEP

6144:OCp4LXhCQeIQH4usjsSqIOf+qrLbPao+V9O:mLhCQebHzS1qDg

Score

10^/10

Malware Config

Extracted

Family

redline

Botnet

PUB

C2

45.9.20.20:13441

Targets

- Target
  
  f797858dee578b99852c3896a9ff46f145b859cfed9241de284f1e46469ad2de
- Size
  
  319KB
- MD5
  
  9b12fe1d432226eb42aab29c08c743c0
- SHA1
  
  e8eee826b23217787696cebb258656c34e9ef77f
- SHA256
  
  f797858dee578b99852c3896a9ff46f145b859cfed9241de284f1e46469ad2de
- SHA512
  
  c6aa7e2a534495d60361e481ed607691f3a18550d4537f960ab1e85ccb69a405cbeae98c4c4c733edc9023390d9c9c1d7733e186242062ca41ec07d47478e94e
- SSDEEP
  
  6144:OCp4LXhCQeIQH4usjsSqIOf+qrLbPao+V9O:mLhCQebHzS1qDg
Score

10^/10

redline sectoprat pub discovery infostealer rat trojan
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
- SectopRAT
  SectopRAT is a remote access trojan first seen in November 2019.
  trojan rat sectoprat
- SectopRAT payload
- Sectoprat family
  sectoprat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

RedLine payload

Redline family

SectopRAT

SectopRAT payload

Sectoprat family

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2