Extracted

• • Target

    JaffaCakes118_2f7f10fa6eace7bebd17522e437dd59f

  • Size

    1.3MB

  • MD5

    2f7f10fa6eace7bebd17522e437dd59f

  • SHA1

    837805f967bcd8f7262763ca7dc47b6665601c18

  • SHA256

    b3e662e94b70be77a5325aa52f5d5634b74a885be60e13303610a811a95052ae

  • SHA512

    59bb1ba300c5ff9e143082b9d8b462fd9b2249528229046c24d4e94a4631e14a0ab99dac02347b561727a41e21988c64bd499b784077231826fe4070a3a35697

  • SSDEEP

    24576:nI/v8DVZwiCFMc5icEFmI5n05CuEjGMgVSmmUIl3icFacacEGJr:SLZ0/Uv7R/G

  Score

  10^/10

  redlinesectopratrussianhackdiscoveryinfostealerrattrojan

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • SectopRAT

    SectopRAT is a remote access trojan first seen in November 2019.

    trojanratsectoprat

  • SectopRAT payload

  • Sectoprat family

    sectoprat

  • Suspicious use of SetThreadContext

  behavioral1behavioral2