Extracted

• • Target

    7ddbd94f2cbd2022b2c8cebda35f1e30a040d776a17e7d33dbe9cf4ed663cc39

  • Size

    1.1MB

  • MD5

    a14eef8a2dc7d5ca90e3dc648f6563d2

  • SHA1

    fe1224af323d4f89105620c3f7026db3f58f886f

  • SHA256

    7ddbd94f2cbd2022b2c8cebda35f1e30a040d776a17e7d33dbe9cf4ed663cc39

  • SHA512

    93ef3235cddac3b6f13213ed8b55ee3e4549e8acd4268f43d7131aaea8dbef88050f9977c28db8196d3b65e408037dafc9b13bd263a4371020c46919375b2890

  • SSDEEP

    24576:Ry8B0B3Z5Bo5PvTV2WFneKJ6IMdx1YLW3UKNAq2jMUtLCYsg3bYnpW:E8yBp5Bo5g8o10WFf8Ijp

  Score

  10^/10

  redlinedomadiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1