Extracted

• • Target

    e18cc629735de8a59af50a44aed486da_JaffaCakes118

  • Size

    277KB

  • MD5

    e18cc629735de8a59af50a44aed486da

  • SHA1

    18692c34ba9c2fb6bde365e9d1bfbf0f9d2588b1

  • SHA256

    9ba27b7a4468d7c99604a40a2b539cb9818a17c502106b8b566551c846e16886

  • SHA512

    33bfd73b590dfb1a2dd6921b0357386fd34743a0784471085eaa30c3f160a4849ccdf4c31fc369432e6597d55782f2f4f8564e983280a17464976bd532ce0f1f

  • SSDEEP

    6144:DCWTtVNJAIJgvNv55fr6SXcZteGQzfe/0teOoMQJSoVyESgOaQ:1Ev7x6trJSoVyESn

  Score

  10^/10

  redlinesectopratabobusv2discoveryinfostealerrattrojan

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • SectopRAT

    SectopRAT is a remote access trojan first seen in November 2019.

    trojanratsectoprat

  • SectopRAT payload

  • Sectoprat family

    sectoprat

  • Suspicious use of SetThreadContext

  behavioral1behavioral2