General
-
Target
b7b41988252d321d4160d2f6ed72038f_JaffaCakes118
-
Size
411KB
-
Sample
240404-n4ry3sfb39
-
MD5
b7b41988252d321d4160d2f6ed72038f
-
SHA1
24f017a984bf9184b5ea17d343781541b007f63d
-
SHA256
4c6e731aece44a5f607771aab0ac125fdc353d5c210c41c7396834c09b983947
-
SHA512
2f4b88037a6511a06f97394ac4ef52940d1ec4137f3491a9960efc1beaa0850aba328e577b085007a61cf6d12ba9cfabc89eab469123f35dda096c91f65a7ad2
-
SSDEEP
6144:5GAuiqntVLJB5T0ficz9wTQ1bFATnbNnw2jvy4t/ra677a:QLBOKczmk1bFAjbLjvy4Vra0W
Static task
static1
Behavioral task
behavioral1
Sample
b7b41988252d321d4160d2f6ed72038f_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
redline
22
185.244.217.195:21588
-
auth_value
0b4dd148fec0e77245f4ce28089cdd6e
Targets
-
-
Target
b7b41988252d321d4160d2f6ed72038f_JaffaCakes118
-
Size
411KB
-
MD5
b7b41988252d321d4160d2f6ed72038f
-
SHA1
24f017a984bf9184b5ea17d343781541b007f63d
-
SHA256
4c6e731aece44a5f607771aab0ac125fdc353d5c210c41c7396834c09b983947
-
SHA512
2f4b88037a6511a06f97394ac4ef52940d1ec4137f3491a9960efc1beaa0850aba328e577b085007a61cf6d12ba9cfabc89eab469123f35dda096c91f65a7ad2
-
SSDEEP
6144:5GAuiqntVLJB5T0ficz9wTQ1bFATnbNnw2jvy4t/ra677a:QLBOKczmk1bFAjbLjvy4Vra0W
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-