General
-
Target
0cd9ee36ae7635415a2764f28bd31ac6_JaffaCakes118
-
Size
366KB
-
Sample
240328-w3ddasdh65
-
MD5
0cd9ee36ae7635415a2764f28bd31ac6
-
SHA1
553b3d07cb8954e789808c514c171332184f2f03
-
SHA256
9823422dbca0bc326d74888dc6edaf0c13038819e9f5e6e670941802396bb1e7
-
SHA512
76dcbb9d396eb919261af4969c7caa8472c96e19cdedf7958e7c1eb4cc978679d85bb3e304d542bfb92b75e0378a36e3c3b3dfdfb25166e5e08bb8a7d31a56fd
-
SSDEEP
6144:nRc2DNDMBl50qO3XKPK+Uh7ECNA3Oh/yhBcKCGEG7v5ofy1T:KuAF0P3XjtECu3Oh/yh7CGEGDWfy
Malware Config
Extracted
redline
shop
45.9.20.107:46187
-
auth_value
60c75f1e2d31f6bac6dd7edad67d8615
Targets
-
-
Target
0cd9ee36ae7635415a2764f28bd31ac6_JaffaCakes118
-
Size
366KB
-
MD5
0cd9ee36ae7635415a2764f28bd31ac6
-
SHA1
553b3d07cb8954e789808c514c171332184f2f03
-
SHA256
9823422dbca0bc326d74888dc6edaf0c13038819e9f5e6e670941802396bb1e7
-
SHA512
76dcbb9d396eb919261af4969c7caa8472c96e19cdedf7958e7c1eb4cc978679d85bb3e304d542bfb92b75e0378a36e3c3b3dfdfb25166e5e08bb8a7d31a56fd
-
SSDEEP
6144:nRc2DNDMBl50qO3XKPK+Uh7ECNA3Oh/yhBcKCGEG7v5ofy1T:KuAF0P3XjtECu3Oh/yh7CGEGDWfy
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT
SectopRAT is a remote access trojan first seen in November 2019.
-
SectopRAT payload
-