Extracted

• • Target

    JaffaCakes118_aaac51f51204ec2115abea04d3b002a7

  • Size

    1.1MB

  • MD5

    aaac51f51204ec2115abea04d3b002a7

  • SHA1

    87969fa263021ece79585261c7bd9bab01d107d4

  • SHA256

    776b815d781ab1a7c08acf7ae50ad24dd3cb0e5a2a6fae375939e97e3099c61b

  • SHA512

    91e469a5b6872a75c04adaaaa423cedaff9ad571c6b17dcf05bbce26c5f77a7d7c2ff587f671bc4b78d3738ad5484bc8f0918c580e605312bb1aed14d3bc66e1

  • SSDEEP

    24576:V+68EZBaiKM4yVvoohjS0YD8nmhY5Lgk0OXJfkizcvDn12I0Eb:/dc0VvoSDY4mhELgKXhkucrn123Eb

  Score

  10^/10

  redlinesectopratbuilddiscoveryinfostealerrattrojan

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • Redline family

    redline

  • SectopRAT

    SectopRAT is a remote access trojan first seen in November 2019.

    trojanratsectoprat

  • SectopRAT payload

  • Sectoprat family

    sectoprat

  • Suspicious use of NtSetInformationThreadHideFromDebugger

  behavioral1behavioral2