Extracted

• • Target

    7067d56123fd38d9b61b9c7609ef5c9f6cec04b61f1d5683fc9756242361bdf3

  • Size

    586KB

  • MD5

    f5a3f3e026d1bf1fde88dc5441e12fef

  • SHA1

    8f21aff635e32661f89f78fd629377ebd9052975

  • SHA256

    7067d56123fd38d9b61b9c7609ef5c9f6cec04b61f1d5683fc9756242361bdf3

  • SHA512

    c55f1cbad578b614ed4cde698dd280a910f0da90d8004e7472c118701c52c919dbb20f84153225823c9379166547091ddc9a60b05e9d2127edccd1949d13eb3f

  • SSDEEP

    12288:wkZ2zL5eA1GoPRkiQKLqvBIbfVLlbO/47FKGy+8:gT13X

  Score

  10^/10

  redlinesectoprat@piffikdiscoveryinfostealerrattrojan

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • SectopRAT

    SectopRAT is a remote access trojan first seen in November 2019.

    trojanratsectoprat

  • SectopRAT payload

  • Sectoprat family

    sectoprat

  • Suspicious use of SetThreadContext

  behavioral1behavioral2