General
-
Target
66ea147b8f9603ead88b570e42091eaa_JaffaCakes118
-
Size
312KB
-
Sample
240401-ec9v5sch3t
-
MD5
66ea147b8f9603ead88b570e42091eaa
-
SHA1
0f45bec29c870c980b1efee1ec9fbf6e79c076a2
-
SHA256
b86366eba978ae65bb1c3bb90ff25c8941a9f00a2522bb8ecf1502fd3aaf2dc5
-
SHA512
ef9e17c5f9d891e853df6ddc25a799d30ba1dbd8d9a0e616a4c367387608352cfb39d71d23dbda344bec935a69a82bcf455a8ba325c736fcd64315f1eefb94d1
-
SSDEEP
6144:j4u8gPQpVgbsOp2D2Agw0cS5P1PgoNIqNadKZgaoCpd2LGW+c:jDrAVgbsOpNAgDB5PlgoeuS+glsdtc
Static task
static1
Behavioral task
behavioral1
Sample
66ea147b8f9603ead88b570e42091eaa_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
redline
build
185.244.182.136:51832
-
auth_value
275ce2c87153d4e8e3cc276c686a93de
Targets
-
-
Target
66ea147b8f9603ead88b570e42091eaa_JaffaCakes118
-
Size
312KB
-
MD5
66ea147b8f9603ead88b570e42091eaa
-
SHA1
0f45bec29c870c980b1efee1ec9fbf6e79c076a2
-
SHA256
b86366eba978ae65bb1c3bb90ff25c8941a9f00a2522bb8ecf1502fd3aaf2dc5
-
SHA512
ef9e17c5f9d891e853df6ddc25a799d30ba1dbd8d9a0e616a4c367387608352cfb39d71d23dbda344bec935a69a82bcf455a8ba325c736fcd64315f1eefb94d1
-
SSDEEP
6144:j4u8gPQpVgbsOp2D2Agw0cS5P1PgoNIqNadKZgaoCpd2LGW+c:jDrAVgbsOpNAgDB5PlgoeuS+glsdtc
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-