General
-
Target
7d14af3423448940171f2df7edbc8b88_JaffaCakes118
-
Size
416KB
-
Sample
240401-3aw39sad76
-
MD5
7d14af3423448940171f2df7edbc8b88
-
SHA1
0721a08c8ba008b525f3b7abd84e018dc554db87
-
SHA256
4a5640a9dab69f2a448ea6e38e2cb1ddf0c29a0d6d6feba7a109a30bcdc9d000
-
SHA512
bec454eb2344e80c9b8fa449eb1a8e3cdaedbdfa660b808cdc8639c10303bfc91da6799667ed8f4713afc1e28306cbe73e3a2e1ac8a6d002f26ea97747ac3236
-
SSDEEP
6144:Mo+DQl2lY5PVtJc9NVAVI58wydnD5Dgf+TjgsuIjl0pysVOWs5afbK:EYGcFc9PAah+gWTjgsu+leVOWsP
Static task
static1
Behavioral task
behavioral1
Sample
7d14af3423448940171f2df7edbc8b88_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
redline
paladin
178.63.26.132:29795
-
auth_value
f27db372188045eefdf974196ead3dae
Targets
-
-
Target
7d14af3423448940171f2df7edbc8b88_JaffaCakes118
-
Size
416KB
-
MD5
7d14af3423448940171f2df7edbc8b88
-
SHA1
0721a08c8ba008b525f3b7abd84e018dc554db87
-
SHA256
4a5640a9dab69f2a448ea6e38e2cb1ddf0c29a0d6d6feba7a109a30bcdc9d000
-
SHA512
bec454eb2344e80c9b8fa449eb1a8e3cdaedbdfa660b808cdc8639c10303bfc91da6799667ed8f4713afc1e28306cbe73e3a2e1ac8a6d002f26ea97747ac3236
-
SSDEEP
6144:Mo+DQl2lY5PVtJc9NVAVI58wydnD5Dgf+TjgsuIjl0pysVOWs5afbK:EYGcFc9PAah+gWTjgsu+leVOWsP
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-