General
-
Target
ba7d1b15134995c9aeee02f7991853e9_JaffaCakes118
-
Size
276KB
-
Sample
240404-rlatmaaa2t
-
MD5
ba7d1b15134995c9aeee02f7991853e9
-
SHA1
52e094faa669225efb59d0ef35f565e5fc9e0a5c
-
SHA256
d65dc2b63a0f4c3d6d66aa6e39d377c2a20cd428ca861f019df2ccb730184f9f
-
SHA512
12c5435015f2792f5427a3d53c4014dbfb1db6d9b85860c227deb2d9c091bdd58fd9671a8a9d03001283ffa224d7cabf66a381a7a03851343e72a828a031e822
-
SSDEEP
6144:JODB4Qrbe66WL+h3hrur2GLTXWIR8KejCt7Vx98aCZrMCSyE:wB4c6WaL6aGLTXxStiH82C
Static task
static1
Behavioral task
behavioral1
Sample
ba7d1b15134995c9aeee02f7991853e9_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
redline
build
77.232.40.127:8204
-
auth_value
275ce2c87153d4e8e3cc276c686a93de
Targets
-
-
Target
ba7d1b15134995c9aeee02f7991853e9_JaffaCakes118
-
Size
276KB
-
MD5
ba7d1b15134995c9aeee02f7991853e9
-
SHA1
52e094faa669225efb59d0ef35f565e5fc9e0a5c
-
SHA256
d65dc2b63a0f4c3d6d66aa6e39d377c2a20cd428ca861f019df2ccb730184f9f
-
SHA512
12c5435015f2792f5427a3d53c4014dbfb1db6d9b85860c227deb2d9c091bdd58fd9671a8a9d03001283ffa224d7cabf66a381a7a03851343e72a828a031e822
-
SSDEEP
6144:JODB4Qrbe66WL+h3hrur2GLTXWIR8KejCt7Vx98aCZrMCSyE:wB4c6WaL6aGLTXxStiH82C
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-