Extracted

• • Target

    204b491f08dbd4f6f8c6c2e0a96ef3ffbc49ef5ae65156781e99b59233ac3dc1

  • Size

    1.1MB

  • MD5

    b82cce803d0ff0752b2858f42216a916

  • SHA1

    a837ddf1c64d83e7bd31db63ddca7be02a1da5c9

  • SHA256

    204b491f08dbd4f6f8c6c2e0a96ef3ffbc49ef5ae65156781e99b59233ac3dc1

  • SHA512

    27eb040b3233088b45b7e33c47501b41e8ed0e3d52b6c344d33332a1cbf0a56bcde6422a8072beb1e4abc925d9e6c023e0e1df2365c3ce2a04e6ac1bdef18cc2

  • SSDEEP

    24576:4yS73Ehpoh0scJz4UYD2HygOfLMlh0vp7XpCNVQB:/S70bE0YdwhXVQ

  Score

  10^/10

  redlinedomadiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1