Extracted

• • Target

    7c3cadb3dfe26c62c4227848379e7554e331d8fc16e87939e6cddb290a9f3169

  • Size

    1.1MB

  • MD5

    6be5d4ea05ff08690371e83f02e1671d

  • SHA1

    73496a8e8861630ca1e1bcd8fb40b4d84d0c6ab2

  • SHA256

    7c3cadb3dfe26c62c4227848379e7554e331d8fc16e87939e6cddb290a9f3169

  • SHA512

    04d47f13a410685381b534daff152616a993b84ac39c0d40057084facf436e0b56cf8c7f6236670e58d1268744e4a8ec790b204f939eb0103f2640266470fa31

  • SSDEEP

    24576:7yEp4SaTtSt2ImbSYRclr3X+GHbthino0gnIWnubAO7:uEGSMYt6OYRcbu6Sgn3O

  Score

  10^/10

  mysticredlinelarekinfostealerpersistencestealer

  • Mystic

    Mystic is an infostealer written in C++.

    stealermystic

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1