Extracted

• • Target

    f6fd042b83f85be44113bf9ed832bee5e7de2270b19704947a4da30f078998cd.exe

  • Size

    262KB

  • MD5

    bf1807ec443b76a12ad675f7cb6bf23a

  • SHA1

    d6eeec1c8cc1ac59d65c778cd66ea4084d633401

  • SHA256

    f6fd042b83f85be44113bf9ed832bee5e7de2270b19704947a4da30f078998cd

  • SHA512

    d50a035ce07479a7517dd4571fbfd9ee292e55ca64eab708dc45882b708a77f27c9c5889e4b95a5e8555c316f7ec72be6e16c5d2747fcd201d61c494753437f1

  • SSDEEP

    3072:zxWXLSyBIbiyAeqwcBbGgabMMy1AxH/HLf/Ji49WCoMY5Z+:zxWzbhdBbGgabvy1AeemZ+

  Score

  10^/10

  redlinediscoveryinfostealerspywarestealer

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2