General
-
Target
f5453b2073092cd346cdf61a378f8151_JaffaCakes118
-
Size
332KB
-
Sample
240417-h8tetaad2y
-
MD5
f5453b2073092cd346cdf61a378f8151
-
SHA1
6a5b562550e6e1b47069dbb4b3a59d8ab4452001
-
SHA256
8f0a22544ae9a1a6cc4eee1ed34c0f7df43c5dad6af713f59425b9e213f5a7a1
-
SHA512
fd5403fccd6309c062b2ee35fd19c0c3a2c4c8f8b3099902611e50e0e7df0f5bafb5fdc616f05ee25ea7cf7ed838d5695e1bbdff3b25913120a6c5b0a8838db7
-
SSDEEP
6144:8vGaxGgr+lysI7LdfJ7itC1TRa5h52PzrKYXlGn4RFYZQ:8eQfr+ly97Ldl51Tc2z/Gn1ZQ
Static task
static1
Behavioral task
behavioral1
Sample
f5453b2073092cd346cdf61a378f8151_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
redline
PUB
45.9.20.20:13441
Targets
-
-
Target
f5453b2073092cd346cdf61a378f8151_JaffaCakes118
-
Size
332KB
-
MD5
f5453b2073092cd346cdf61a378f8151
-
SHA1
6a5b562550e6e1b47069dbb4b3a59d8ab4452001
-
SHA256
8f0a22544ae9a1a6cc4eee1ed34c0f7df43c5dad6af713f59425b9e213f5a7a1
-
SHA512
fd5403fccd6309c062b2ee35fd19c0c3a2c4c8f8b3099902611e50e0e7df0f5bafb5fdc616f05ee25ea7cf7ed838d5695e1bbdff3b25913120a6c5b0a8838db7
-
SSDEEP
6144:8vGaxGgr+lysI7LdfJ7itC1TRa5h52PzrKYXlGn4RFYZQ:8eQfr+ly97Ldl51Tc2z/Gn1ZQ
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-