General
-
Target
5c854a037b0430e526a87be70f6a5b47_JaffaCakes118
-
Size
426KB
-
Sample
240331-yh74aaba46
-
MD5
5c854a037b0430e526a87be70f6a5b47
-
SHA1
b99c7a29e212a16eacf3e21ee837e30d5374374e
-
SHA256
395d357f3d7d758a16ba9c13b63c0d478299bc97999ec022c0a44610c8d2da4b
-
SHA512
103badb68a351925ba3c371e17744e5042540376638c8e6d52e47145fc648c8975a9deb26344a0d5833d4c53efb56d21b4df2706c8aecd72ef7a82261b32ea1b
-
SSDEEP
6144:3LgvoY471tJHa+C4DS1LAO5mC81Io8rVofIYBwqc3L5igsu:Mv271i+LcJ0CoIRrSIYBwzb5su
Static task
static1
Behavioral task
behavioral1
Sample
5c854a037b0430e526a87be70f6a5b47_JaffaCakes118.exe
Resource
win7-20240220-en
Malware Config
Extracted
redline
4
80.87.192.249:16640
-
auth_value
3e4c638c72124e45bcf5164456741cce
Targets
-
-
Target
5c854a037b0430e526a87be70f6a5b47_JaffaCakes118
-
Size
426KB
-
MD5
5c854a037b0430e526a87be70f6a5b47
-
SHA1
b99c7a29e212a16eacf3e21ee837e30d5374374e
-
SHA256
395d357f3d7d758a16ba9c13b63c0d478299bc97999ec022c0a44610c8d2da4b
-
SHA512
103badb68a351925ba3c371e17744e5042540376638c8e6d52e47145fc648c8975a9deb26344a0d5833d4c53efb56d21b4df2706c8aecd72ef7a82261b32ea1b
-
SSDEEP
6144:3LgvoY471tJHa+C4DS1LAO5mC81Io8rVofIYBwqc3L5igsu:Mv271i+LcJ0CoIRrSIYBwzb5su
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-