Extracted

• • Target

    35bc44c85ac01234d1688f6312b01bff7961d080b90f46f297fca5cdfbb0d264

  • Size

    175KB

  • MD5

    5f0a741491d53e1b9c61c19ee6117389

  • SHA1

    53851993c3357f6ccf9072396f2e7ce1cb2a59d0

  • SHA256

    35bc44c85ac01234d1688f6312b01bff7961d080b90f46f297fca5cdfbb0d264

  • SHA512

    0f9ba4568b5c3e9cfcb7e24407a13e5fe4ac3473c7a8d9fe9d2a8b73e808d5883ea3066834dab3c061900df0d7aa63b1ca44a540aba934820e35ccf89187a84e

  • SSDEEP

    3072:6xqZWjfa8oty3BfeT59lhavxNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jOuw+ca2:oqZCBalh

  Score

  10^/10

  redlinereivdiscoveryinfostealerspywarestealer

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2