Extracted

• • Target

    78401f1b4780b93624c6074650094b2bbc4f0422da436aaf64663ce5e49b8570.exe

  • Size

    823KB

  • MD5

    a6891bebbf4a7856b63d029813309676

  • SHA1

    2f9cde57a4b59d4eca7d25d314d681ce9d607fbf

  • SHA256

    78401f1b4780b93624c6074650094b2bbc4f0422da436aaf64663ce5e49b8570

  • SHA512

    e685947d2c0168e347854bcb3c6bcaf49cbe245d00181f10efc4d0223471e0a920f40aca005bde474536297e65eeee5d8b8fa654bdbf555543339babfa14e393

  • SSDEEP

    12288:ljpIoLLoS60/K7yh0yAUxiN82gJpBDmL+unhKB2IAbWI96kAK5:ljSoLAyAUxiu2gQthKs1R9XT5

  Score

  10^/10

  redlinesectopratbtc1discoveryinfostealerrattrojan

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • SectopRAT

    SectopRAT is a remote access trojan first seen in November 2019.

    trojanratsectoprat

  • SectopRAT payload

  • Sectoprat family

    sectoprat

  • Suspicious use of SetThreadContext

  behavioral1behavioral2