General
-
Target
226ad7b28c8326882c98f3b74fc9a33b_JaffaCakes118
-
Size
385KB
-
Sample
240329-p2asfsgh9t
-
MD5
226ad7b28c8326882c98f3b74fc9a33b
-
SHA1
276de14097c9e5646ebf4bc2f5e369f0b1c1c860
-
SHA256
631cdb7b1c8fc0bd47541973f9b3769ab77dfd97e3a2a594757a8b7bab23cbd3
-
SHA512
18d4125db2185687d574a4e27e80e06541b9a3224943424491ddb5a532a0a145f2fea7178b6e5c2e23a3eb774c02471cf71b134caf6b4a588633a44da49dc330
-
SSDEEP
6144:DECgQihZ3vlxLkmr029g5JjNu9saY5RSjk+b2gaBqDNO:AjQuZ3vlxLkmr0igXJu9saY5Rm2gaBA
Static task
static1
Behavioral task
behavioral1
Sample
226ad7b28c8326882c98f3b74fc9a33b_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
redline
build
77.232.40.127:8204
-
auth_value
275ce2c87153d4e8e3cc276c686a93de
Targets
-
-
Target
226ad7b28c8326882c98f3b74fc9a33b_JaffaCakes118
-
Size
385KB
-
MD5
226ad7b28c8326882c98f3b74fc9a33b
-
SHA1
276de14097c9e5646ebf4bc2f5e369f0b1c1c860
-
SHA256
631cdb7b1c8fc0bd47541973f9b3769ab77dfd97e3a2a594757a8b7bab23cbd3
-
SHA512
18d4125db2185687d574a4e27e80e06541b9a3224943424491ddb5a532a0a145f2fea7178b6e5c2e23a3eb774c02471cf71b134caf6b4a588633a44da49dc330
-
SSDEEP
6144:DECgQihZ3vlxLkmr029g5JjNu9saY5RSjk+b2gaBqDNO:AjQuZ3vlxLkmr0igXJu9saY5Rm2gaBA
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-