Extracted

• • Target

    b985b473c9b5cd81bc0f216ec9d72f321c8d1a0991035c86954a5b4ac5aa6d14

  • Size

    1.1MB

  • MD5

    78d37943a245561c3c02011634759050

  • SHA1

    97df305cff2c744d56b448449973199d41e074c7

  • SHA256

    b985b473c9b5cd81bc0f216ec9d72f321c8d1a0991035c86954a5b4ac5aa6d14

  • SHA512

    c6dbacc0c7a2c129c4966379ad59ad4a42aa2549244fcd6e324d6935b4e9e57e879dc49a7e8b31cd0ba2272ab2c9bb39bd45604c673254dda2ed92a3c0a1bac8

  • SSDEEP

    24576:pyjl33dpMErnoClPBf7aDx/b/+4KHGbiMXIrMOfngtMM5:cjl3r7lPxaDlpKHGGhr7gtM

  Score

  10^/10

  redlinedomadiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1