Extracted

• • Target

    JaffaCakes118_d920a410b40c0c2835bec64cf7d61b6b

  • Size

    146KB

  • MD5

    d920a410b40c0c2835bec64cf7d61b6b

  • SHA1

    85150911fd8cc5d449041118fa234190daa92e23

  • SHA256

    99b110ffb07a5e92cd767d0eb63040de3cf32aa260a05d9a37d7ef723ff69f19

  • SHA512

    064720cb79510b3a431842730556f6cf55c073ca6755d64923eec58ead8d983d70d3eb731bf841870337483e4bce7547d996931c690030ae0a16549ca3933a3c

  • SSDEEP

    3072:GrsTGICBZ0kwjzgWY+ouXpJnrFFChXeBoqXCytPERGEvZ:w90kQFY+TfnrKhXeBhXe

  Score

  10^/10

  redlinesectopratdiscoveryinfostealerrattrojan

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • SectopRAT

    SectopRAT is a remote access trojan first seen in November 2019.

    trojanratsectoprat

  • SectopRAT payload

  • Sectoprat family

    sectoprat

  • Suspicious use of SetThreadContext

  behavioral1behavioral2