Extracted

• • Target

    374ea99fca7187421ea94e7cd3e285060d708b4ace157dae1461346e7f562958.exe

  • Size

    600KB

  • MD5

    eb4bb57d219fee37c90ce789a70f2aa6

  • SHA1

    774237a13c86abc1204068ddda02854a6832664f

  • SHA256

    374ea99fca7187421ea94e7cd3e285060d708b4ace157dae1461346e7f562958

  • SHA512

    ac882779531634b5657b181963823b1a50233936b4a4b024bf69bb66b74a2bea531bf78cf6dd198142b5a6d8d0a116ac58ba31f50c76ae7e6fa9731d58a5c4e3

  • SSDEEP

    12288:y/7MFu3XDG2bJ16DiykNwGxzT7mbQ5k6SCmOhzzFRioge:y/7xG2qGZxn7mbj6SzOB7ioge

  Score

  10^/10

  redlinesectopratsb9s5ylxvjdiscoveryinfostealerrattrojan

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • SectopRAT

    SectopRAT is a remote access trojan first seen in November 2019.

    trojanratsectoprat

  • SectopRAT payload

  • Sectoprat family

    sectoprat

  • Suspicious use of SetThreadContext

  behavioral1behavioral2