General
-
Target
1aad8dfcecd8062f44972df66f4a469f_JaffaCakes118
-
Size
390KB
-
Sample
240329-gy87vaca73
-
MD5
1aad8dfcecd8062f44972df66f4a469f
-
SHA1
5f9111f252125f9839d6905c79b2f7c2c2598c99
-
SHA256
1f97a7a1a775598c9840065c7ab087d69df8d140b3540a37656bdd5f75b69340
-
SHA512
a91b946f8ccc722fe07d0339481feec5481fa092ce7f825b85c8f1a0a5280ff0e149e5b7e7f65186ffe37021c348d4046d0a92aaa79d5fb2785d814d07e8b845
-
SSDEEP
6144:mmoXEEUrUjSXki71Lj3GN0zhKmpXhh2mcF91Z4pGSUfMdTti:r+U9XkiJes8mpXhkmcFZ4pGs
Static task
static1
Behavioral task
behavioral1
Sample
1aad8dfcecd8062f44972df66f4a469f_JaffaCakes118.exe
Resource
win7-20240215-en
Malware Config
Extracted
redline
PUB
45.9.20.182:52236
-
auth_value
a272f3a2850ec3dccdaed97234b7c40e
Targets
-
-
Target
1aad8dfcecd8062f44972df66f4a469f_JaffaCakes118
-
Size
390KB
-
MD5
1aad8dfcecd8062f44972df66f4a469f
-
SHA1
5f9111f252125f9839d6905c79b2f7c2c2598c99
-
SHA256
1f97a7a1a775598c9840065c7ab087d69df8d140b3540a37656bdd5f75b69340
-
SHA512
a91b946f8ccc722fe07d0339481feec5481fa092ce7f825b85c8f1a0a5280ff0e149e5b7e7f65186ffe37021c348d4046d0a92aaa79d5fb2785d814d07e8b845
-
SSDEEP
6144:mmoXEEUrUjSXki71Lj3GN0zhKmpXhh2mcF91Z4pGSUfMdTti:r+U9XkiJes8mpXhkmcFZ4pGs
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-