General
-
Target
2e95b02f2463f0084d533f473180249a_JaffaCakes118
-
Size
385KB
-
Sample
240329-3pyweacb31
-
MD5
2e95b02f2463f0084d533f473180249a
-
SHA1
c2fe19520ebe875a6ce3393796251ac7d2088d6a
-
SHA256
6e514059475c66ef2fa26133ac050a89700d6d6570d954e2e80d233b2c52f20c
-
SHA512
f194a77b536d9877552dd4608691286149e9e6eb341aaa1de98f237cbcdd132413b8be7c40551c345ef3ad9eec6d4ad2656746022f46bb2efa4157d165e0c1d7
-
SSDEEP
6144:/P3G22bx9QDP9hIeYHuxk+Rj+DTv3L8vzJ0nqlbX4BTypU3Dzgyzqv:X12bx9SFhIeYOSDTvL87Onql0VypEDzE
Static task
static1
Behavioral task
behavioral1
Sample
2e95b02f2463f0084d533f473180249a_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
redline
sewPalp
185.215.113.29:24645
-
auth_value
41d3df6d093b1e36993abf16af0d6f2d
Targets
-
-
Target
2e95b02f2463f0084d533f473180249a_JaffaCakes118
-
Size
385KB
-
MD5
2e95b02f2463f0084d533f473180249a
-
SHA1
c2fe19520ebe875a6ce3393796251ac7d2088d6a
-
SHA256
6e514059475c66ef2fa26133ac050a89700d6d6570d954e2e80d233b2c52f20c
-
SHA512
f194a77b536d9877552dd4608691286149e9e6eb341aaa1de98f237cbcdd132413b8be7c40551c345ef3ad9eec6d4ad2656746022f46bb2efa4157d165e0c1d7
-
SSDEEP
6144:/P3G22bx9QDP9hIeYHuxk+Rj+DTv3L8vzJ0nqlbX4BTypU3Dzgyzqv:X12bx9SFhIeYOSDTvL87Onql0VypEDzE
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-