General
-
Target
e65c38e167aa048db62d44771241f84c_JaffaCakes118
-
Size
275KB
-
Sample
240408-ca5gjadd2x
-
MD5
e65c38e167aa048db62d44771241f84c
-
SHA1
9117a6d0f5afb08e676e4595db2a4ef3148e5ba4
-
SHA256
5f53c2734dc7045d2665701cb3485582d28cd60000879861200d463b60cd9eaf
-
SHA512
51c71312b604e10370133415c71b5296f1ebe155f2eb7fa14405b208ef328750f0b3547bf7ebd79c34067ad83aad654ed58f0f22ec1b83532cedd469bf5fbe07
-
SSDEEP
6144:8a3ZTgolqiyFp6+7LeFf1aTO8rYcLvfeWUsfRk3OZRwoOL:FEoe6wLU0O8rpTfeWUck+HwoO
Static task
static1
Behavioral task
behavioral1
Sample
e65c38e167aa048db62d44771241f84c_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
e65c38e167aa048db62d44771241f84c_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
redline
SewPalpadin
185.215.113.114:8887
Targets
-
-
Target
e65c38e167aa048db62d44771241f84c_JaffaCakes118
-
Size
275KB
-
MD5
e65c38e167aa048db62d44771241f84c
-
SHA1
9117a6d0f5afb08e676e4595db2a4ef3148e5ba4
-
SHA256
5f53c2734dc7045d2665701cb3485582d28cd60000879861200d463b60cd9eaf
-
SHA512
51c71312b604e10370133415c71b5296f1ebe155f2eb7fa14405b208ef328750f0b3547bf7ebd79c34067ad83aad654ed58f0f22ec1b83532cedd469bf5fbe07
-
SSDEEP
6144:8a3ZTgolqiyFp6+7LeFf1aTO8rYcLvfeWUsfRk3OZRwoOL:FEoe6wLU0O8rpTfeWUck+HwoO
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-