Extracted

• • Target

    JaffaCakes118_7005f66e015c162af29b84ca758af94f

  • Size

    247KB

  • MD5

    7005f66e015c162af29b84ca758af94f

  • SHA1

    eb4b755ce99fb79fa947c7545d3498c631de7288

  • SHA256

    0f9f4ac23308ba9787e182edad1d01539d46557e910c21df20eefc1554c00a8a

  • SHA512

    138bb7cb905728b36c81529175514948d32d7d8235d71d7d320f557118f194ee98dd56e46e1346095f93f8e560630e898fa2c3a3eb6750b45c002708bdcac700

  • SSDEEP

    3072:h/FYFx8gyRjTblaHKPOUyYKXBgISJ+Ad4lVsLieK3fY8vVcOkVMOCL6:h/ZjTcgOUyzXiISJ/4l2L+g8vfkVV

  Score

  10^/10

  redlinesectopratdiscoveryinfostealerrattrojan

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • SectopRAT

    SectopRAT is a remote access trojan first seen in November 2019.

    trojanratsectoprat

  • SectopRAT payload

  • Sectoprat family

    sectoprat

  • Suspicious use of SetThreadContext

  behavioral1behavioral2