General
-
Target
a83bf477f4977e619a866ac9d3233814_JaffaCakes118
-
Size
406KB
-
Sample
240403-197ypsee7w
-
MD5
a83bf477f4977e619a866ac9d3233814
-
SHA1
bd0f10a4232812eac512730263bf71c6dda09777
-
SHA256
0aebf2c39b154018f617d939b6da4335b7e69fa281d367568b1c0177fa74da47
-
SHA512
5a01e7d645f5de260fbb3b46d7dee80d2b6e4c12d127690c6391a224881468279874e9d407cf41d99a4457968eb39e42121815a54e23129468444f2958314ec3
-
SSDEEP
6144:zZ94nPDeZWemvtNZBPyFpQpcTwdYhrAdZayXXrJnvDydmgt6kx:zoNe63aQpcTwdk8dZayXb9DEmg
Static task
static1
Behavioral task
behavioral1
Sample
a83bf477f4977e619a866ac9d3233814_JaffaCakes118.exe
Resource
win7-20240215-en
Malware Config
Extracted
redline
sewPalp
185.215.113.29:24645
-
auth_value
41d3df6d093b1e36993abf16af0d6f2d
Targets
-
-
Target
a83bf477f4977e619a866ac9d3233814_JaffaCakes118
-
Size
406KB
-
MD5
a83bf477f4977e619a866ac9d3233814
-
SHA1
bd0f10a4232812eac512730263bf71c6dda09777
-
SHA256
0aebf2c39b154018f617d939b6da4335b7e69fa281d367568b1c0177fa74da47
-
SHA512
5a01e7d645f5de260fbb3b46d7dee80d2b6e4c12d127690c6391a224881468279874e9d407cf41d99a4457968eb39e42121815a54e23129468444f2958314ec3
-
SSDEEP
6144:zZ94nPDeZWemvtNZBPyFpQpcTwdYhrAdZayXXrJnvDydmgt6kx:zoNe63aQpcTwdk8dZayXb9DEmg
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-