General
-
Target
e236a905ee0765d8a11aec7d2b3e908d_JaffaCakes118
-
Size
384KB
-
Sample
240406-l7m37afh61
-
MD5
e236a905ee0765d8a11aec7d2b3e908d
-
SHA1
e566cb791505d06ef16602a4f8c382d6dba2a0fd
-
SHA256
705dbb05ab9e06321a184fe6e40fb97cd6582f545fe74a844094d89751bbcc2f
-
SHA512
ec126809a77b8a168107370beda3d4072c110d4685677ed3686ac0b25732393b385d769a89f58d4956a057aabca760fa8d790d69c9fecca657d19601fe479d29
-
SSDEEP
6144:hsKPy9mw+3DUrH/x+pRNMjoHo0UGgzq/AvHm4nq5brw96sx6hpNKT1F:yTeUIpbUQo0hgO/AfTnq5IssxYvqF
Static task
static1
Behavioral task
behavioral1
Sample
e236a905ee0765d8a11aec7d2b3e908d_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
redline
sewPalp
185.215.113.29:24645
-
auth_value
41d3df6d093b1e36993abf16af0d6f2d
Targets
-
-
Target
e236a905ee0765d8a11aec7d2b3e908d_JaffaCakes118
-
Size
384KB
-
MD5
e236a905ee0765d8a11aec7d2b3e908d
-
SHA1
e566cb791505d06ef16602a4f8c382d6dba2a0fd
-
SHA256
705dbb05ab9e06321a184fe6e40fb97cd6582f545fe74a844094d89751bbcc2f
-
SHA512
ec126809a77b8a168107370beda3d4072c110d4685677ed3686ac0b25732393b385d769a89f58d4956a057aabca760fa8d790d69c9fecca657d19601fe479d29
-
SSDEEP
6144:hsKPy9mw+3DUrH/x+pRNMjoHo0UGgzq/AvHm4nq5brw96sx6hpNKT1F:yTeUIpbUQo0hgO/AfTnq5IssxYvqF
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-