Extracted

• • Target

    b9dbddba63e0ab925c21c4e9e7aecdc7.exe

  • Size

    379KB

  • MD5

    b9dbddba63e0ab925c21c4e9e7aecdc7

  • SHA1

    13724bfbb505f85693606280dafe3ff749372ac8

  • SHA256

    64365156896ff3b41790a7b0dd38bf1efb985a4e5e35135883b34ea69a85b508

  • SHA512

    02ca5bce25a943ec3d4057ad4a06a037788b90eafdfec5a60b2fe79f8eb2e89cbb390ac322d9b0c33ae07379524d09bd3811ac07519bf8fc5e7248c048cb5009

  • SSDEEP

    6144:qWXVGmfa9s2Kk0hxeQQBr865/i/X3L6PyT:BFGmfa9nVw6l23L6PC

  Score

  10^/10

  redlinelogsdiller cloud (telegram: @logsdillabot)discoveryinfostealerspywarestealer

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2