Extracted

• • Target

    bfe811397881f12af308084358fbe17f_JaffaCakes118

  • Size

    1.0MB

  • MD5

    bfe811397881f12af308084358fbe17f

  • SHA1

    61a809b74b672f493f547dd0600600b065161600

  • SHA256

    486f2809c2ebb2e0ba0e3d36de073914541a8ba7b9d2ddbe0a51521dcc08ebb7

  • SHA512

    ed763688eae92bf09e8b6cf2f9a8b122a53ae43d79582e98177a6639920acd370714fe0653b2e3d225ace34d9a510bb3a9fa1cace3f6cd8f1265ae5b3a00fe7f

  • SSDEEP

    24576:3Xjzd7ibgr9TFOeuv42h30ojS3i9aoW+MhW0LwQEwRbr:A0ojS3iIopMhWqwJ

  Score

  10^/10

  redlinesectopratlexa4okbtcdiscoveryinfostealerrattrojan

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • SectopRAT

    SectopRAT is a remote access trojan first seen in November 2019.

    trojanratsectoprat

  • SectopRAT payload

  • Sectoprat family

    sectoprat

  • Suspicious use of SetThreadContext

  behavioral1behavioral2