Extracted

• • Target

    JaffaCakes118_b789e985d3c4281c9515433811ea21c2

  • Size

    355KB

  • MD5

    b789e985d3c4281c9515433811ea21c2

  • SHA1

    08f5b34f1e19a4659041eec1df587c8036428696

  • SHA256

    552d8d01f02ee396385097544499d26612e11a4cd0381a58c45436ec614ec02b

  • SHA512

    381dfbff5118db7432f8ecdabf5f5fae00bec1da3c30c59a2415748364da6ccfd7364b60cd59a32e7aa3493110510701a0da621ed0e1c983c411f9f83caccb1d

  • SSDEEP

    6144:IAbAYfbpFzgLgESONKgTOrHfziqAOzWJPfqXF:IEAYfbpFzgLbSXNIqF

  Score

  10^/10

  redlinesectoprat@silistrii_lztdiscoveryinfostealerrattrojan

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • SectopRAT

    SectopRAT is a remote access trojan first seen in November 2019.

    trojanratsectoprat

  • SectopRAT payload

  • Sectoprat family

    sectoprat

  • Suspicious use of SetThreadContext

  behavioral1behavioral2