Extracted

• • Target

    67e2ed7bf15aa61396794bc48623e14f4f69401b8bf4f9ed9e1fff7d10019920

  • Size

    1.1MB

  • MD5

    57098189c9ac0035b8d01948654fd88e

  • SHA1

    c13d0ac4885280f8de54bd6ffaa9c276cd1a9d92

  • SHA256

    67e2ed7bf15aa61396794bc48623e14f4f69401b8bf4f9ed9e1fff7d10019920

  • SHA512

    8b1e68c065dfa3dc5cc8990c9bfe4642c870fe7aa4477de5e66f586f6b51163d12cccacc8edc9325534a1d8f274c82633ca232a035cde08971c844c49543fd9e

  • SSDEEP

    24576:vyCJKUY/fRnhGN9+EPM8K9RyLtKhjSpK/7Od/8hzjAkCxkxp:6n3BhGn+gM19RyJKh8pWVx

  Score

  10^/10

  redlinedomadiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1