Extracted

• • Target

    JaffaCakes118_a8afa0d53599a0c834f211624bbed0bc

  • Size

    5.0MB

  • MD5

    a8afa0d53599a0c834f211624bbed0bc

  • SHA1

    a6763aec67da918d54144fdd5ff9d2de66e4574b

  • SHA256

    aa1f78b6d224ca14e19ba9d0bff8381e360db52d27b10b3246889a387c4a3292

  • SHA512

    41d3f1202e89440b188995116e5244a50e2046e35b91e933a3b0c10b1d771acc1d191fcd3cc315d2bc430c05ae24bbcfd41e539c043a9bf87cb9228f6bd23a39

  • SSDEEP

    98304:lLXZ2+8B3LnehT9qZZjKmRhZTXibS/BXbh3iw/Wha2P3ODmux:i+Q3LObo7/Rh3t+3ODmU

  Score

  10^/10

  redlinesectopratgooddiscoveryinfostealerrattrojan

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • SectopRAT

    SectopRAT is a remote access trojan first seen in November 2019.

    trojanratsectoprat

  • SectopRAT payload

  • Sectoprat family

    sectoprat

  • Suspicious use of SetThreadContext

  behavioral1behavioral2