Extracted

• • Target

    9e10cd72fd11418ab2c8c2957c0dfbb981a028d34bcfbaa90c671af4f0b92032.exe

  • Size

    355KB

  • MD5

    ca83fd117ff78e8e40cab397b074fa36

  • SHA1

    8d4ed77add391b1f377dace1d6dd11de83cbf4bb

  • SHA256

    9e10cd72fd11418ab2c8c2957c0dfbb981a028d34bcfbaa90c671af4f0b92032

  • SHA512

    a88894805832f28bd2ccf1ca56769fe419077f0fa4a6942bb0d595a12d26234b8d2f7609c3a7150d0a2bfd4f3efab81255ea47b3508a34da552ca37e906bbc78

  • SSDEEP

    6144:ejeDmfF86gnwhqWp3Xf8KHexLRECe4mqtUfJILh4va:GeyfF8YgCBULRwTMUxIN

  Score

  10^/10

  redlinedozkdiscoveryinfostealerspywarestealer

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2