Extracted

• • Target

    JaffaCakes118_d5e5d90fa1231d6eb034a6876eb60055

  • Size

    146KB

  • MD5

    d5e5d90fa1231d6eb034a6876eb60055

  • SHA1

    8213bd5ab596408dd86d0efd7a87c906c2aba0e5

  • SHA256

    461401597ff7d6afe0f63d54728daa5a0762193ad8c60e25dda69e64a946508b

  • SHA512

    37a63e872a3ac108f87bb350edc5f91640241f24222723bf5042778c89e3e9a53e4eb6772c6f44c8c02f19d963bded28846315e2ed1d67e1074395408446e917

  • SSDEEP

    3072:sMIgNr6dQotshzheiT0er6a+pFaJSN3JD48WKufuFEZEA+:VZ1jPT0S6aBQNZDHJufux

  Score

  10^/10

  redlinesectopratdiscoveryinfostealerrattrojan

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • SectopRAT

    SectopRAT is a remote access trojan first seen in November 2019.

    trojanratsectoprat

  • SectopRAT payload

  • Sectoprat family

    sectoprat

  • Suspicious use of SetThreadContext

  behavioral1behavioral2