General
-
Target
e6877e35b45e3e4f075f48155b03aed4_JaffaCakes118
-
Size
290KB
-
Sample
240408-dy81asfd96
-
MD5
e6877e35b45e3e4f075f48155b03aed4
-
SHA1
82877902433b7198413d652ff912fdbe69f6d4eb
-
SHA256
943619e1888ff48ae6fe10087f3b0e2d1185ec2b53afe5f3ad226e7c92196ac7
-
SHA512
b484752f85ef3ad9dfea7e1d70bcf5909b22d0da6baa18b469e26e202b8af557936a4890871d8a04bfc8ab6e1ce7ca4a483c67b740b55191c081c9cccac8f560
-
SSDEEP
6144:I+DB4eiOYNDLtahVTLYSp57u7KWch7Vx98aCqQZcryEXsu:fB4eiL3ghVYSC7KWkH8K5su
Static task
static1
Behavioral task
behavioral1
Sample
e6877e35b45e3e4f075f48155b03aed4_JaffaCakes118.exe
Resource
win7-20240215-en
Malware Config
Extracted
redline
4
80.87.192.249:16640
-
auth_value
3e4c638c72124e45bcf5164456741cce
Targets
-
-
Target
e6877e35b45e3e4f075f48155b03aed4_JaffaCakes118
-
Size
290KB
-
MD5
e6877e35b45e3e4f075f48155b03aed4
-
SHA1
82877902433b7198413d652ff912fdbe69f6d4eb
-
SHA256
943619e1888ff48ae6fe10087f3b0e2d1185ec2b53afe5f3ad226e7c92196ac7
-
SHA512
b484752f85ef3ad9dfea7e1d70bcf5909b22d0da6baa18b469e26e202b8af557936a4890871d8a04bfc8ab6e1ce7ca4a483c67b740b55191c081c9cccac8f560
-
SSDEEP
6144:I+DB4eiOYNDLtahVTLYSp57u7KWch7Vx98aCqQZcryEXsu:fB4eiL3ghVYSC7KWkH8K5su
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-