Extracted

• • Target

    41619d9ec3347057f6b84d9a53b0bdf94c56e7eb5c8975d280e8e74b77e38f19

  • Size

    713KB

  • MD5

    06e39dc2b0dda0e430ac1f48f4bab9a9

  • SHA1

    d379aee432b469e3ad8881509097fca20c819afe

  • SHA256

    41619d9ec3347057f6b84d9a53b0bdf94c56e7eb5c8975d280e8e74b77e38f19

  • SHA512

    fcc2d3ea751c54d2ffc78e4f95e6a3c93c15581a4cf5b42190db80799851d6921b0d56923b1b98436413ffb292bd1837d24562bb7f0aefa8beebb1f88eb0c640

  • SSDEEP

    12288:QMrfy90T7qN8yz5EEhcIdqCyp5Fa04CN2ueJ9pP1VtSUIE5i5p+kflODH9T3:fy6U8kLhDq3ys2lDlfgUv5i5dsJ

  Score

  10^/10

  redlinedugininfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1