Extracted

• • Target

    92e3b9943eedaca5edc59649085eb8f1636aaf70304089aeabb55ec86e73670f_JC.exe

  • Size

    832KB

  • MD5

    8434c354a7b488e8a7a3aaffec572295

  • SHA1

    e317f2049c52cb419ebbf7c8586de1b726aa19a5

  • SHA256

    92e3b9943eedaca5edc59649085eb8f1636aaf70304089aeabb55ec86e73670f

  • SHA512

    d248e498b13071e1d7f696df38c528a0d8864ba76012d7f8f07e25c18096ba3ccc3602262ec00e888ca4507f47a7a599e3d4ef73d04e5c9d8f752d3a5168b909

  • SSDEEP

    12288:yMrXy90g2sVCX6/Z59utYEkwTVKbo0LYfu8fvrlljxSGdcgkYFl5/IKDE:9yIq/ZHuGEk4R9XHrlljk5IjIKI

  Score

  10^/10

  redlinedugininfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • Executes dropped EXE

  • Loads dropped DLL

  • Adds Run key to start application

    persistence
  behavioral1behavioral2