Extracted

• • Target

    file.exe

  • Size

    429KB

  • MD5

    b7825a7cadc1ccad3b668aaed403e89b

  • SHA1

    a3db91d29a5ad9f92a323937843eeb720033a74c

  • SHA256

    ac79bfde4bd6ba77c5236bea1e46d529bb7825809685636a3e7b7715d3f345bd

  • SHA512

    0f3d86e5bb51f7a8368cd9142b641bb53de8707904eff114e9b7471b3b7774295e6dd8fd93ee10fefa1a1811ab556cf457f9c877bc43a6a696c8cdac6d39f953

  • SSDEEP

    6144:mvRnUablLKvi26PxR5+5oE0LmV88cepWLj6K4BSIv+YupJ35D:MnUUlCiPj5+5v0LmyxepWFmwD

  Score

  10^/10

  redlinesukdiscoveryinfostealerspywarestealer

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2