General
-
Target
42542f5e7306f86420913fc60b3091bd_JaffaCakes118
-
Size
376KB
-
Sample
240330-xwl8asce3x
-
MD5
42542f5e7306f86420913fc60b3091bd
-
SHA1
4ee2a86dee38ce87efeb6255720afc934402b23f
-
SHA256
5b051a47a380e66a8218afcd6bd7e78d140f7f3983dee73e9816e7997a98cc9f
-
SHA512
bfa98ceacee4d34dfd685ed2b5478bb36ea4669788667413a3089864456128ec4bc0e8faeb208c71aa809d21a5afff36872846ac2d6aca89c53ea91bd077966a
-
SSDEEP
6144:EJDV1/0CPVm6CNNCEEheoxMHGxO202F4cZLLGlm2MC+0VcR4mPm:QD//TIN7N8tKcZLLGo220VcR4
Static task
static1
Behavioral task
behavioral1
Sample
42542f5e7306f86420913fc60b3091bd_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
redline
777
oucesesstor.xyz:81
edaycamanel.xyz:81
-
auth_value
164c9110509d4287fde8e8f70e9d3b36
Targets
-
-
Target
42542f5e7306f86420913fc60b3091bd_JaffaCakes118
-
Size
376KB
-
MD5
42542f5e7306f86420913fc60b3091bd
-
SHA1
4ee2a86dee38ce87efeb6255720afc934402b23f
-
SHA256
5b051a47a380e66a8218afcd6bd7e78d140f7f3983dee73e9816e7997a98cc9f
-
SHA512
bfa98ceacee4d34dfd685ed2b5478bb36ea4669788667413a3089864456128ec4bc0e8faeb208c71aa809d21a5afff36872846ac2d6aca89c53ea91bd077966a
-
SSDEEP
6144:EJDV1/0CPVm6CNNCEEheoxMHGxO202F4cZLLGlm2MC+0VcR4mPm:QD//TIN7N8tKcZLLGo220VcR4
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-