Extracted

• • Target

    7ba69dcdcf718008905558b36d4d88d3bb139197e278d4453515199f58a7f00e

  • Size

    283KB

  • MD5

    9b582f125f4509ffe91fb8851cfc74e6

  • SHA1

    1fc545d613c0488ef0c9b756caa278b685e245c8

  • SHA256

    7ba69dcdcf718008905558b36d4d88d3bb139197e278d4453515199f58a7f00e

  • SHA512

    bd7c724de1c3ddbc15ce72ece5e0b037b177e538a110ad4770ee3a7313bb9c42e8ae18e7f7c917371baae0c9c74ac860bde4bdfd021e97c3b2cbb959279c7b73

  • SSDEEP

    6144:GA9PtDR6Yhoprt7bjSTI/ExnG5ZNyVOn:J9PtDsYho9t7yTNxeLp

  Score

  10^/10

  redlinefronx2discoveryinfostealerspywarestealer

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1