Extracted

• • Target

    JaffaCakes118_f6d2d609d31385a58bdd72985d785daf

  • Size

    4.6MB

  • MD5

    f6d2d609d31385a58bdd72985d785daf

  • SHA1

    f7e48b537aa755a2539359ff5a24558711747cb7

  • SHA256

    62d2c67b631111c620b309bca97816019f6765747f0e44be1c89eea2c052d6a7

  • SHA512

    1ddc5f122c4ba0849c6524bc38bef99420ba6ef4b0e4287b7cde21c36c3bbeb850fd3802a91b048b65bc27401f9e15153dd0bd4b5645f54f161f7bc77ab47769

  • SSDEEP

    98304:CLDoY62mCREWaJCar6SN3xpbo1QOm4aWQYERoDTv1dfuRCQ8905:YrmCREWa7r6SN33jeaWQdELbW0905

  Score

  10^/10

  redlinesectoprat963909366discoveryinfostealerrattrojan

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • SectopRAT

    SectopRAT is a remote access trojan first seen in November 2019.

    trojanratsectoprat

  • SectopRAT payload

  • Sectoprat family

    sectoprat

  • Suspicious use of SetThreadContext

  behavioral1behavioral2