Extracted

• • Target

    JaffaCakes118_c683eb9eea4611afb7550ca9a4019e77

  • Size

    195KB

  • MD5

    c683eb9eea4611afb7550ca9a4019e77

  • SHA1

    030fafdb49eaf17a433df5b6967885eab565cd0c

  • SHA256

    4e6e6547c384f489b1666e3f9e026c992fcf416f6ce090b4a6b678e361d03dbf

  • SHA512

    f95b1e1f0b977466a0c069e97e270cbfa7eed90802894cadbcd574b83f086c43d727f05f8a8bc305bf7f584a76828dd701768cbb328910693c888c24e8788065

  • SSDEEP

    3072:C81Vymh7JrU4r4fGbXB7TSoF2wXdKezOTxyhfhCw1FzrpN3jV0Z0k6xEqw:fj17rAGzJVBnOTQhJC+zrbVAN

  Score

  10^/10

  redlinesectopratdiscoveryinfostealerrattrojan

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • SectopRAT

    SectopRAT is a remote access trojan first seen in November 2019.

    trojanratsectoprat

  • SectopRAT payload

  • Sectoprat family

    sectoprat

  • Suspicious use of SetThreadContext

  behavioral1behavioral2