Extracted

• • Target

    41903706e727468cc2571b7a031c9bbfeb4ee3ee37abc521c09196b7bf82f992.exe

  • Size

    113KB

  • MD5

    156f32576e18f7ca50e41068cc9cdf00

  • SHA1

    8ccd026801b52cdb9eb410763f4236c4075c7bca

  • SHA256

    41903706e727468cc2571b7a031c9bbfeb4ee3ee37abc521c09196b7bf82f992

  • SHA512

    d5366250e4c04fcf821f5e04f675f0ebe9feb97422b464e0cf00013207b919d790c3ce49303a7fc91956081809066d00a375ba342bd1f3fb32b48defef12f435

  • SSDEEP

    1536:fvZi55zWamDfjpo9mfjkCp4JqFkZe0OaSBUmJbu3zqgzFX0wuei++nYcto:fxqZWPJaskHJCjnaSBFeuIFXhQi

  Score

  10^/10

  redlineme938ar34aedd1avktgu7jvu63bowxdiscoveryinfostealerspywarestealer

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2