Extracted

• • Target

    35c199916e15bbcedfcf18c428d4989093cc1492e428831472d1e32e0234c2ad

  • Size

    412KB

  • MD5

    bc283b6f42f24be57a811baa07d21a67

  • SHA1

    429eb7241b9918e695fd5f0699efb25ab53eae97

  • SHA256

    35c199916e15bbcedfcf18c428d4989093cc1492e428831472d1e32e0234c2ad

  • SHA512

    91d21632d447c3369f4049549d52c989dd314254eee5b7337436336f52ca94e6b10c6baa0c1908808aec5b84df7473521e921a03ba03ad4719cc174f86222d4c

  • SSDEEP

    6144:VFcCWAcj3j3atKkpTUNuwXMxrUY8xG9O4T/uFjWMG9DoOpgpRjFE:VGCyHaJZwXWY40Y/ujGWOSL

  Score

  10^/10

  redline@new@2023discoveryinfostealerspywarestealer

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2