redline

General

Target

JaffaCakes118_bddf7c04e395c2b8667f553708e63d4b
Size

384KB
Sample

250105-z3ah7awmfx
MD5

bddf7c04e395c2b8667f553708e63d4b
SHA1

a734ccc7e163646485304a691bcff6f507c8bcc8
SHA256

6c995db087c47293facd316b3aae0348829bac5282ecd7f08d3b59dfb1701ef8
SHA512

c27cf2343591f2ccf55a33af22bde4db8c43859397b5bc798aa99777eae38b94ddbf56eff978824b8507f898eee1d8c729b321cad96b2535ae7d340551ff68d8
SSDEEP

6144:CFjCCep3Z1pWPlb1DC1hqAVGcuDvn3CnvJbCyAOYtoL+I0+Xayn:CFjYp3ZrWPu1cANuDvSnvJpfYtI+Ne3

Score

10^/10

Malware Config

Extracted

Family

redline

Botnet

usamoney

C2

45.142.215.47:27643

Attributes

auth_value
9491a1c5e11eb6097e68a4fa8627fda8

Targets

- Target
  
  JaffaCakes118_bddf7c04e395c2b8667f553708e63d4b
- Size
  
  384KB
- MD5
  
  bddf7c04e395c2b8667f553708e63d4b
- SHA1
  
  a734ccc7e163646485304a691bcff6f507c8bcc8
- SHA256
  
  6c995db087c47293facd316b3aae0348829bac5282ecd7f08d3b59dfb1701ef8
- SHA512
  
  c27cf2343591f2ccf55a33af22bde4db8c43859397b5bc798aa99777eae38b94ddbf56eff978824b8507f898eee1d8c729b321cad96b2535ae7d340551ff68d8
- SSDEEP
  
  6144:CFjCCep3Z1pWPlb1DC1hqAVGcuDvn3CnvJbCyAOYtoL+I0+Xayn:CFjYp3ZrWPu1cANuDvSnvJpfYtI+Ne3
Score

10^/10

redline sectoprat usamoney discovery infostealer rat trojan
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
- SectopRAT
  SectopRAT is a remote access trojan first seen in November 2019.
  trojan rat sectoprat
- SectopRAT payload
- Sectoprat family
  sectoprat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

RedLine payload

Redline family

SectopRAT

SectopRAT payload

Sectoprat family

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2