Extracted

• • Target

    f982718837862c2d9efae7301a69979af8cffa1e8a5069a29e53b25fedbe541c

  • Size

    1.1MB

  • MD5

    b700fb1051a178f4df96918625cc3be3

  • SHA1

    718fddab38305d106a9b2560f1e02c8fcc563c5d

  • SHA256

    f982718837862c2d9efae7301a69979af8cffa1e8a5069a29e53b25fedbe541c

  • SHA512

    864f58bbc9729d613d3ad0f93390721594647560aadaa69df3101b6f3daf859ab54734dd1d062fc2fcc883ad454a6ca55bd6ff7b8c1c049ee7d9e64d45f80452

  • SSDEEP

    24576:HyrgOrrZJilOeuTCiPTuFn/WUo2Ks8jpcPCb0e2k5v:SsOrGOeubPTanOJKPCb0E

  Score

  10^/10

  redlinedomadiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1