General
-
Target
9962a67e90447aac990f242efeb004fc_JaffaCakes118
-
Size
310KB
-
Sample
240402-2wvxnaga7s
-
MD5
9962a67e90447aac990f242efeb004fc
-
SHA1
58985c753f918f3ba8df47a47cdf4f441a701894
-
SHA256
1bbc078db5d1d7f8003ac55c86d5e925d50cd79ce2b4e1b95cda63b5242f000e
-
SHA512
0f25056c70da9dfbfa8073a2adb571317d7fce097993555d9cd61b496e06c17ad7d6285deeed84773fae859945efc01b8cf5d61e6f2c0c7f231c781e49f6eba0
-
SSDEEP
6144:IPCJBkjI2vit5jQ/pXlOY4f3tQovdJpxJVx98aC3HS:W2Baxqt5E/t9MtzDH8n
Static task
static1
Behavioral task
behavioral1
Sample
9962a67e90447aac990f242efeb004fc_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
redline
sewPalp
185.215.113.29:24645
-
auth_value
41d3df6d093b1e36993abf16af0d6f2d
Targets
-
-
Target
9962a67e90447aac990f242efeb004fc_JaffaCakes118
-
Size
310KB
-
MD5
9962a67e90447aac990f242efeb004fc
-
SHA1
58985c753f918f3ba8df47a47cdf4f441a701894
-
SHA256
1bbc078db5d1d7f8003ac55c86d5e925d50cd79ce2b4e1b95cda63b5242f000e
-
SHA512
0f25056c70da9dfbfa8073a2adb571317d7fce097993555d9cd61b496e06c17ad7d6285deeed84773fae859945efc01b8cf5d61e6f2c0c7f231c781e49f6eba0
-
SSDEEP
6144:IPCJBkjI2vit5jQ/pXlOY4f3tQovdJpxJVx98aC3HS:W2Baxqt5E/t9MtzDH8n
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-