Extracted

• • Target

    d0910fba768db40a949129c81fb8ca0901dbf15ef07289679b9ca45bec347b7b.dll

  • Size

    518KB

  • MD5

    a912086e768f7806891bc260eadf369f

  • SHA1

    3d78976a94b7c9acef9c95c1ac3c80995e9bbffc

  • SHA256

    d0910fba768db40a949129c81fb8ca0901dbf15ef07289679b9ca45bec347b7b

  • SHA512

    67ffafe261c8ccd75fa106f8624df0ad944c2d01f76a2a7ebc72ea7cdbd733220b62c477015f9c7be58f61be839d20e42354b65ae0f3ac7654110732af73d1ff

  • SSDEEP

    6144:ZMBhxUy0Bal6N6tYpNO3lu9EshyGjKukQtqBHor8bU+ZOGMmUedGdTm2LyfVHxqb:qBLUy9UN6A9Esh1+53bfZOG9dUefqy9

  Score

  10^/10

  discoveryredlinecredential_accessinfostealerspywarestealer

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Credentials from Password Stores: Credentials from Web Browsers

    Malicious Access or copy of Web Browser Credential store.

    credential_accessstealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware
  behavioral1behavioral2