General
-
Target
c80f43e46ab57da6be664ef0175c4ba4_JaffaCakes118
-
Size
366KB
-
Sample
240405-cpvwmshe7v
-
MD5
c80f43e46ab57da6be664ef0175c4ba4
-
SHA1
5adc22e302c9e4d51c9963138f22fb5b69cad500
-
SHA256
99e62cbc82f17ed961e5e0ba0e291863d70868e018ae1d78c00162a799f3f483
-
SHA512
8531f7ea9f17f6e9e3f8aec72db2526d607bb3b24651b932b5180e6e5ea727a3a0069e8761a4fa3b686b282060f297ec6af1128c2ec61afbaa6652d5bae877f0
-
SSDEEP
6144:COfUwPXnZYB6WPs6jb9hvzNni6F/txK0gFo8qhSnK0G:ZUQXZheb95z9i6F/trgFo82QKp
Static task
static1
Behavioral task
behavioral1
Sample
c80f43e46ab57da6be664ef0175c4ba4_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
redline
usamoney
45.142.215.47:27643
-
auth_value
9491a1c5e11eb6097e68a4fa8627fda8
Targets
-
-
Target
c80f43e46ab57da6be664ef0175c4ba4_JaffaCakes118
-
Size
366KB
-
MD5
c80f43e46ab57da6be664ef0175c4ba4
-
SHA1
5adc22e302c9e4d51c9963138f22fb5b69cad500
-
SHA256
99e62cbc82f17ed961e5e0ba0e291863d70868e018ae1d78c00162a799f3f483
-
SHA512
8531f7ea9f17f6e9e3f8aec72db2526d607bb3b24651b932b5180e6e5ea727a3a0069e8761a4fa3b686b282060f297ec6af1128c2ec61afbaa6652d5bae877f0
-
SSDEEP
6144:COfUwPXnZYB6WPs6jb9hvzNni6F/txK0gFo8qhSnK0G:ZUQXZheb95z9i6F/trgFo82QKp
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-