Extracted

• • Target

    2f2b059f28121a74d3d56189c02692387e5c0469f89ad091ee49a1eebce92cc2.exe

  • Size

    175KB

  • MD5

    0dcb7f44095aa1afbaf134b107d8efd1

  • SHA1

    12026286f031a596144d7fe48da0c49428802ad4

  • SHA256

    2f2b059f28121a74d3d56189c02692387e5c0469f89ad091ee49a1eebce92cc2

  • SHA512

    57a23ba53b49d31ee243baeedab8766d0eaf757f1b066ed5b1373a75ae464649a4db1b2021758dff3886f92c05587f503cc33b64ce3598798721f418190b7d41

  • SSDEEP

    3072:mxqZWjnacI0iLMROUqcwwewE9vh+HxNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jV:MqZ7MROLvdvh

  Score

  10^/10

  redline@avangardow_krutimdiscoveryinfostealerspywarestealer

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2