Extracted

• • Target

    2fef2269b229f5f0e47be63b7f635ca40184345384c1bff32a8ce7678a3c18a7

  • Size

    175KB

  • MD5

    438274becd1d693975e568caf19734a9

  • SHA1

    0538421a4739a043d045e34f5ae89189d0db4e63

  • SHA256

    2fef2269b229f5f0e47be63b7f635ca40184345384c1bff32a8ce7678a3c18a7

  • SHA512

    6cd0653f9f9a8efc04afdfd73ab1fece3684a4a6a93a4a74abda685dd2a18ed3db195ecfa35e33455204af3321bd293e50d28a26c0634a6e20dadfba8228bb56

  • SSDEEP

    3072:kxqZWZRanU2n0YLxE3I4Ge/N9PhhPxNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jr:6qZgYLx+r5Ph

  Score

  10^/10

  redlineluzadiscoveryinfostealerspywarestealer

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2