Extracted

• • Target

    b435b230822366b00dde38c8983581c814e295aa45bcc996ae2fc30245facda0

  • Size

    376KB

  • MD5

    b015b9bc949bb6595d639c33dae0af23

  • SHA1

    d8b4f1b2673aa211bd67a12da9eaf6dad7b25fd3

  • SHA256

    b435b230822366b00dde38c8983581c814e295aa45bcc996ae2fc30245facda0

  • SHA512

    c8fa0c90a4db74432758397b7d80b6bc15dd26c24081d12d7bac5b19d90d2edb941758ca032852c908e2c4d6ab41bf059aa355a5841c626f88dba890190628c1

  • SSDEEP

    6144:iRULOmaZhLPnoqM4L+UuJ/q091jmwsJrUmdMaghB/enNSOcn7tZY:iRUymaLPoj6+UsFvjHWtQ

  Score

  10^/10

  redline@2023@newdiscoveryinfostealerspywarestealer

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2