General
-
Target
b321ac1d90fb1f6bd5671b2ab0601c94_JaffaCakes118
-
Size
449KB
-
Sample
240404-j1jfbaae89
-
MD5
b321ac1d90fb1f6bd5671b2ab0601c94
-
SHA1
dd9003b3b764bb717e2846ba7695aa4d438aae34
-
SHA256
24548102a0bde6de1a12ea22af035a921852327d9670643abdc6d8594ca415c4
-
SHA512
debad3f369c5776b3e47d0273b1aee861c9fdee622c0bee4901a700873945bc682f21190cd037e68ca5ca1bf33baeac02084b131c53fee3100340993fa789585
-
SSDEEP
12288:VyupeeuuluF/tTbnVwIiM+s0LpH8pPZP+9xZ:Vn7bitfVwIr0LpGZ
Static task
static1
Behavioral task
behavioral1
Sample
b321ac1d90fb1f6bd5671b2ab0601c94_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
redline
paladin
178.63.26.132:29795
-
auth_value
f27db372188045eefdf974196ead3dae
Targets
-
-
Target
b321ac1d90fb1f6bd5671b2ab0601c94_JaffaCakes118
-
Size
449KB
-
MD5
b321ac1d90fb1f6bd5671b2ab0601c94
-
SHA1
dd9003b3b764bb717e2846ba7695aa4d438aae34
-
SHA256
24548102a0bde6de1a12ea22af035a921852327d9670643abdc6d8594ca415c4
-
SHA512
debad3f369c5776b3e47d0273b1aee861c9fdee622c0bee4901a700873945bc682f21190cd037e68ca5ca1bf33baeac02084b131c53fee3100340993fa789585
-
SSDEEP
12288:VyupeeuuluF/tTbnVwIiM+s0LpH8pPZP+9xZ:Vn7bitfVwIr0LpGZ
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-