Extracted

• • Target

    64c03c0f3abecf51f9479209e6a24ad3374c919fe706a198c4cc6346e44782ae

  • Size

    344KB

  • MD5

    5e63f777438c8809dd4803f4ef76b0f5

  • SHA1

    3965f638ddf3e91fe50c05a3414378da3ecef77f

  • SHA256

    64c03c0f3abecf51f9479209e6a24ad3374c919fe706a198c4cc6346e44782ae

  • SHA512

    81bcbbcbf59bcebed1b20a0f899ef59dc1847b684b55fd6f48fecd541f1f930639087fbe25349026cc558c21e6ca8c849a4eb5933e3a0e70c0fa3ac03dfdb142

  • SSDEEP

    6144:/aL216yrWNkQeoLd7IqlA4VMYWG4EsaMKX:ya16yrW+SVP4YrX

  Score

  10^/10

  redlineshakurdiscoveryinfostealerspywarestealer

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2