Extracted

• • Target

    4c375bb5f06c00277848e3f3462ec3da52c4158d2f7fce3d31b001b552cb070c

  • Size

    175KB

  • MD5

    d642d29b28f03f5593e6930cb6a14ef8

  • SHA1

    2ef73096290e69d46e3743ce1c4566bd4e783d73

  • SHA256

    4c375bb5f06c00277848e3f3462ec3da52c4158d2f7fce3d31b001b552cb070c

  • SHA512

    e23f49fa342f048a042e28cb68e0cc2f89ba3355189c409201429874ae8be55fe72b21ab4170772af2f3ecbbf1205bd12f5765f8a8055a7e1e667749c68c74ef

  • SSDEEP

    3072:7xqZW11a2kX8fSx3IeJwewI9zhfrxNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jOZ:NqZkSx3ZJ5zh

  Score

  10^/10

  redlineviladiscoveryinfostealerspywarestealer

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2