Extracted

• • Target

    BlueTwelve Studio Information For Bloggers Stray Promotion on YouTube 2022.scr.exe

  • Size

    192KB

  • MD5

    8f9d4f7768960c59b8011c8c1a52dd63

  • SHA1

    a8648349a9aa90efd315e278786951cedfe711a9

  • SHA256

    b63350aad8b78b989c052c8bdae2ea691108e8e15f4b9b6c864ad86b1c300e36

  • SHA512

    0e2f0edae9b7e410e7258de77ab08cc6dff9532c896561a6db50535cb4fb18eaaf26cd26257292355fa69678bb5c3866394e0b1d82c218db1dc6385fec281ca7

  • SSDEEP

    3072:gY1x8WCRhhuDNmTQhAC38Em9OAQzqkjO1UFag+7DNNvFs0T6O9fjTy3z7mS5Jnfz:Zj8TRm38Em6qkjtYNC0TxfjuHnfWE

  Score

  10^/10

  redlinecryptotrafficinfostealerspyware

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • Uses the VBS compiler for execution

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Suspicious use of SetThreadContext

  behavioral1behavioral2