Extracted

• • Target

    93872d007a4395272c4f45a731426682_JaffaCakes118

  • Size

    1.1MB

  • MD5

    93872d007a4395272c4f45a731426682

  • SHA1

    04940f5f5b58114b92c97a34a77ed5767ba09b71

  • SHA256

    3e037daf2b62539fec0ad31b6c3b58d7483ce3b17f98d559169ad216329e585f

  • SHA512

    b8b2a083c998b9b8573e4dc92aab4e111b9573a39faf00641da8c2aee985a71331af4255bd082cce8d6ce5f610a73d0f7f4101c5ff528ef80dbc8a2a98c04e53

  • SSDEEP

    12288:QhmyUUmJJU7ZBSlyKAuxkfzqDJvj7L+YnkYZE1U29K2KxQpi1XtXqE6TXAaLqZlH:QhgJU7ZUD5l

  Score

  10^/10

  redlinesectopratsvejdiscoveryinfostealerrattrojan

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • SectopRAT

    SectopRAT is a remote access trojan first seen in November 2019.

    trojanratsectoprat

  • SectopRAT payload

  • Sectoprat family

    sectoprat

  • Suspicious use of SetThreadContext

  behavioral1behavioral2