Extracted

• • Target

    a2535213ca3a4644894790d6aaec497a9b2dedf0fcb0f36eeaa658e389e8a6bd

  • Size

    785KB

  • MD5

    fac0a671c0110f6658d7558e1f307256

  • SHA1

    cef091b20c37df8f73abe1778c78dca30ebeb837

  • SHA256

    a2535213ca3a4644894790d6aaec497a9b2dedf0fcb0f36eeaa658e389e8a6bd

  • SHA512

    598731703b96e8c95a3560c9c11061d757605f89306e2103ced663e30ebc958bc8ec26d121d3747b1b52572f012f10468d1609109231a9c0d48e4585dc2ce06a

  • SSDEEP

    12288:sMrxy9053dIy4vHStANYWdqSsseKODozDZd28DB5i8YcexQfLfmdAIJRHzXOb6:VyyIy2y+uxbbKO8/T28FPzfYjHzXOb6

  Score

  10^/10

  redlinebubeninfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1