Extracted

• • Target

    cac4b55749b1ebab27e7c35561e7826a_JaffaCakes118

  • Size

    739KB

  • MD5

    cac4b55749b1ebab27e7c35561e7826a

  • SHA1

    5905462b6f59ce09ca2d00130754823001c1c37f

  • SHA256

    90913bbde92e6aa57a58cab04a7197f4c8816e145d7686af59b232c4e750a988

  • SHA512

    5084a5e71b7252b6b77e14254fdc818f25456e048fb40eb4a128000a102985a1577bf84d70385deb2ad682984de32df3d1e8396c3a01229d108cfa3f686be908

  • SSDEEP

    12288:Q8ulnxmNRzdgD3jFNuTRwRpv7j4GmfyOKvXn4Z+vNWzkdO1ivp2Y0Y:QxoRYj4GmfdKvXnUzkMgBm

  Score

  10^/10

  redlinesectoprattruetopdiscoveryinfostealerrattrojan

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • SectopRAT

    SectopRAT is a remote access trojan first seen in November 2019.

    trojanratsectoprat

  • SectopRAT payload

  • Sectoprat family

    sectoprat

  • Suspicious use of SetThreadContext

  behavioral1behavioral2