Extracted

• • Target

    c5e7b8cc508292f2dc7a9e3061c322f8dbd05f0c5f3118326ac4b3e09bc06202

  • Size

    175KB

  • MD5

    b6c58e654bd7e1f22e4c3965375c15cb

  • SHA1

    ac1a61be5fc3e507cd7a20932722a7e37dcd99fa

  • SHA256

    c5e7b8cc508292f2dc7a9e3061c322f8dbd05f0c5f3118326ac4b3e09bc06202

  • SHA512

    c8b0a7dc27b7de064e4eeecfafbda8a17658d462e5e7217d6cc10db590943fcf0634419bc948278de6d51615eff82e3263ccecd7251af3500042e77514e15256

  • SSDEEP

    3072:yxqZWFFa7E6T825De559yhGfxNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jOuw+cO:gqZcMUyh

  Score

  10^/10

  redlinenadodiscoveryinfostealerspywarestealer

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2