Extracted

• • Target

    2e2cb229a73556caa2963dd5f240d914313aad441a1f586ad1de4d533644228f

  • Size

    362KB

  • MD5

    4a4ce0c49cde961bfb85b16d06942079

  • SHA1

    f40cfc70230dd2e053d9a74d60e4755bad1c9376

  • SHA256

    2e2cb229a73556caa2963dd5f240d914313aad441a1f586ad1de4d533644228f

  • SHA512

    b0a6859fbe78877f2e11c1b38e62d9bf41f1cf46c31f3081f9e89bee505d82e657e51241414975c9bf4d0d9dca6c65fa4a5ad6f731dd2c65de794949d5ab0d22

  • SSDEEP

    6144:DfGEqhgT/L0c9aQSv0vDsMGNX1XZ8q5HYDEvpTMMBGc:zw+T/YzQBDFGKqKo1c

  Score

  10^/10

  redlineroberdiscoveryinfostealerspywarestealer

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1