Extracted

• • Target

    52c6a788856cae9e0842a8ba75927d6be1e56303746923b7362aa4e9cddbca07

  • Size

    434KB

  • MD5

    9d24e422f8c4bf121a0ce901cf7997c9

  • SHA1

    4c2ac238d8416af7c1ebd2c79841f6eb57dce402

  • SHA256

    52c6a788856cae9e0842a8ba75927d6be1e56303746923b7362aa4e9cddbca07

  • SHA512

    1f958765bc9578c9c1748ff32490dd9ee11584aa6a73066ff6a6affaee988b2715529daeaa8fb5b6b49c6d83d959890691407504fec87af1a169a451972ee5ba

  • SSDEEP

    6144:6a3LtcSf08IScSYpqx+Z20CFCXKOH8J3rHQ+69RGPy991VN9UZdLaYon5Jk4eROz:/35siFYGCCw+69AqAdin5JF

  Score

  10^/10

  redline@new@2023discoveryinfostealerspywarestealer

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2