Extracted

• • Target

    e913219e5f91222d184ecc758088ef02_JaffaCakes118

  • Size

    448KB

  • MD5

    e913219e5f91222d184ecc758088ef02

  • SHA1

    e3e9a88a115f3661d55655a096b013f192b93a05

  • SHA256

    9dc934f7f22e493a1c1d97107edc85ccce4e1be155b2cc038be8d9a57b2e430f

  • SHA512

    879406edaaf7b4956c535c93d067f485e660309ffa7d9a40b1de4eac0fe6e59c0497f93960c5b280df29c91bc6e232c2b0311f6582aabb5b264c43b1dea3505b

  • SSDEEP

    12288:OdQGx+KnXxFfjAQaKXGBmpO7AJ7Lgm9j7:OdvPjfav0pNJLgm9j7

  Score

  10^/10

  redlinesectopratninja0812discoveryinfostealerrattrojan

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • SectopRAT

    SectopRAT is a remote access trojan first seen in November 2019.

    trojanratsectoprat

  • SectopRAT payload

  • Sectoprat family

    sectoprat

  • Suspicious use of SetThreadContext

  behavioral1behavioral2