Extracted

• • Target

    file.exe

  • Size

    429KB

  • MD5

    ad8cd8bd5cef0665fa3653e0f7d58d3f

  • SHA1

    20f5598a6667869c9c3b7c858b19c8d8b717a5b4

  • SHA256

    64a1c94fcab87b145fb8c3bc12811a247b0efd376d38ad1a19328c00ffa3b963

  • SHA512

    b19e007910cba952fc1d5dcb093adabe51ca46023a48be936f2702616cad993a8dd70b507098a4a3f8fa9d1faa8acedcc2d6fb46b9b8a76c7c623cf7f6c465c3

  • SSDEEP

    6144:o8dnyH0AckyCJM53R/ImK2muCIh7EUhzV8cnlgqjk/s7sl35e:1nyHXZGUm1lCIhbCcnlgqjk/Ve

  Score

  10^/10

  redlinesukdiscoveryinfostealerspywarestealer

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2