General

  • Target

    e597a534eb56f4ceb19c06d599f75a03_JaffaCakes118

  • Size

    388KB

  • Sample

    241212-kp4gsa1lgr

  • MD5

    e597a534eb56f4ceb19c06d599f75a03

  • SHA1

    91eedca2f5cbcf2331c4dcc2f10395f9653df794

  • SHA256

    24bb15d093025a935e0de62e850056aea484990c713517cd53de6696b5e9db52

  • SHA512

    39df497986829cb670d502f8174825bc466605ba411ab1f46e393e05ab30f6af7e63f57b79b17687b41b9d4b42df22295009302e804baf94fa34e92e7a261ff5

  • SSDEEP

    6144:4SfwVx9vZVqakzsoVvKvJijIk2cZ2BUnd7TuT9Ey7SybF52NaQ9y5w:TwV3XqaOr8vJijccaUNiTeGFAAQAy

Malware Config

Extracted

Family

redline

Botnet

SewPalpadin

C2

185.215.113.114:8887

Targets

    • Target

      e597a534eb56f4ceb19c06d599f75a03_JaffaCakes118

    • Size

      388KB

    • MD5

      e597a534eb56f4ceb19c06d599f75a03

    • SHA1

      91eedca2f5cbcf2331c4dcc2f10395f9653df794

    • SHA256

      24bb15d093025a935e0de62e850056aea484990c713517cd53de6696b5e9db52

    • SHA512

      39df497986829cb670d502f8174825bc466605ba411ab1f46e393e05ab30f6af7e63f57b79b17687b41b9d4b42df22295009302e804baf94fa34e92e7a261ff5

    • SSDEEP

      6144:4SfwVx9vZVqakzsoVvKvJijIk2cZ2BUnd7TuT9Ey7SybF52NaQ9y5w:TwV3XqaOr8vJijccaUNiTeGFAAQAy

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

    • SectopRAT

      SectopRAT is a remote access trojan first seen in November 2019.

    • SectopRAT payload

    • Sectoprat family

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.