General
-
Target
fce56ea69a9712ce0ac94368d5a124b0_JaffaCakes118
-
Size
386KB
-
Sample
240420-q2vcjaaa35
-
MD5
fce56ea69a9712ce0ac94368d5a124b0
-
SHA1
13906015b834bfe7140da50f9d12733408677006
-
SHA256
66fff084975782cddb02df98a9cab04e2af1b489d7d8bb17ae7e0ffc30e706be
-
SHA512
639b96c438bf84ddaeab979fc7b81de3f8b2b10a1d5f119365a83a60103b6ddb69d96228ebeda7c950d08370dd0057b841d9f527c8f5bb05e5de84d9f253d0af
-
SSDEEP
6144:vGBYycejKQKCSBQPRfVs74jPleTWM1iARZajJRfjzMLUASz6evAK+Gijy:ZLejtRSCPLs0bAPTRZEfnzbvY2
Static task
static1
Behavioral task
behavioral1
Sample
fce56ea69a9712ce0ac94368d5a124b0_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
fce56ea69a9712ce0ac94368d5a124b0_JaffaCakes118.exe
Resource
win10v2004-20240412-en
Malware Config
Extracted
redline
SewPalpadin
185.215.113.114:8887
Targets
-
-
Target
fce56ea69a9712ce0ac94368d5a124b0_JaffaCakes118
-
Size
386KB
-
MD5
fce56ea69a9712ce0ac94368d5a124b0
-
SHA1
13906015b834bfe7140da50f9d12733408677006
-
SHA256
66fff084975782cddb02df98a9cab04e2af1b489d7d8bb17ae7e0ffc30e706be
-
SHA512
639b96c438bf84ddaeab979fc7b81de3f8b2b10a1d5f119365a83a60103b6ddb69d96228ebeda7c950d08370dd0057b841d9f527c8f5bb05e5de84d9f253d0af
-
SSDEEP
6144:vGBYycejKQKCSBQPRfVs74jPleTWM1iARZajJRfjzMLUASz6evAK+Gijy:ZLejtRSCPLs0bAPTRZEfnzbvY2
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-