Extracted

• • Target

    8a47d16dd380f046459e2fd1ebc636a1bba301d521587cc147b4240de545b20e.exe

  • Size

    397KB

  • MD5

    c9ca226a2016cda8abc17a88256b09b8

  • SHA1

    8d9e5449790924430e6c0de8232e46fa97b1dae6

  • SHA256

    8a47d16dd380f046459e2fd1ebc636a1bba301d521587cc147b4240de545b20e

  • SHA512

    44005217e202fac280d9c3a6a7e63f99bde6a836d29e560143893a7de5f5ff9c516c9aba6ae9af6b27e862a87048259708b8a986a142d35e29a34d5e6937bfe1

  • SSDEEP

    6144:6FMJQLLzvijefEGxpUowDUefSHnmqVWRVUAAx2iJLBITOCB8MQhw:6z3zviaEgOowkmqgMLBITTl

  Score

  10^/10

  redlinelogsdiller cloud (telegram: @logsdillabot)discoveryinfostealerspywarestealer

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2