Extracted

• • Target

    ff891d75cbf96e80530df61616e0dd6ffac80468c7b7edd8a2b23d8e6ea39294

  • Size

    405KB

  • MD5

    8485eb34c067e91651999c508489ee24

  • SHA1

    8d3444c9e63d5ab05fbee780175dda15779526a8

  • SHA256

    ff891d75cbf96e80530df61616e0dd6ffac80468c7b7edd8a2b23d8e6ea39294

  • SHA512

    4a939af1f0ccf8fc68ed87ce71227bc867ed84981829b57a9f226c8c67c9ac0f9f0138693982473823451b69718a3332bc700e8cc286caa97dcfb9a07cccb2d1

  • SSDEEP

    6144:k3vHRYj8LJuSbs2RCD0TLHsLwO22LKyjRVYGvw:wYj80URCQbsL26KyP7

  Score

  10^/10

  redlinesukdiscoveryinfostealerspywarestealer

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2