LQuotePdf.exe

Target

LQuotePdf.exe

Size

309KB

Sample

210113-ns6x91y85n

Score

10 ^/10

MD5

516dc9c39bc4e3cb7ac6251d038c3be8

SHA1

70402eff9246bab1b00c40d9b743c2c99bbfb248

SHA256

68e1ab10c0906ad3d54599d03150938a0e00533060251b1223b76440e4d51b6a

SHA512

ec178d0804a16dbb0325f1142dba1ce5cd364828d415bac645032e43315f15833c4987037e656c7d72298ea8cb63540865c5c4e38e1ee5d6e26cf27414d2a224

Target

LQuotePdf.exe

MD5

516dc9c39bc4e3cb7ac6251d038c3be8

Filesize

309KB

Score

10 ^/10

SHA1

70402eff9246bab1b00c40d9b743c2c99bbfb248

SHA256

68e1ab10c0906ad3d54599d03150938a0e00533060251b1223b76440e4d51b6a

SHA512

ec178d0804a16dbb0325f1142dba1ce5cd364828d415bac645032e43315f15833c4987037e656c7d72298ea8cb63540865c5c4e38e1ee5d6e26cf27414d2a224

Signatures

RedLine

Description

RedLine Stealer is a malware family written in C#, first appearing in early 2020.

Tags

infostealer redline
Reads user/profile data of web browsers

Description

Infostealers often target stored browser data, which can include saved credentials etc.

Tags

spyware

TTPs

Data from Local System Credentials in Files
Checks installed software on the system

Description

Looks up Uninstall key entries in the registry to enumerate software on the system.

Tags

discovery

TTPs

Query Registry

Related Tasks

behavioral1 behavioral2

Collection

Data from Local System

Command and Control

Credential Access

Credentials in Files

Defense Evasion

Discovery

Query Registry

Execution

Exfiltration

Impact

Initial Access

Lateral Movement

Persistence

Privilege Escalation

static1

keylogger stealer agenttesla

10^/10

behavioral1

redline discovery infostealer spyware

10^/10

behavioral2

redline discovery infostealer spyware

10^/10

Tags

Signatures

RedLine

Description

Tags

Reads user/profile data of web browsers

Description

Tags

TTPs

Checks installed software on the system

Description

Tags

TTPs

Related Tasks

static1

behavioral1

behavioral2