Extracted

• • Target

    50f3c4092e3eb22b023ceaf68457c0f068d106cc6779fb7b8b639c4bdee92549

  • Size

    1.1MB

  • MD5

    69f3eba07ae9d75b6d85a54416640df9

  • SHA1

    6cd2c8bcbcaacbc43306495e168902c10d6c1247

  • SHA256

    50f3c4092e3eb22b023ceaf68457c0f068d106cc6779fb7b8b639c4bdee92549

  • SHA512

    b0e971d16b6c2ec6aa540ee2f41f62f8ae2592c37143d5c6f5f537dbb1a3ef0cd4b1450ba7362cf9ba546e8cfb263341ee0bcb2cf5c3b26afd2c92e6e30f9762

  • SSDEEP

    24576:QyCNEhZPJnnCM1BWyqV2x13b+fwDi0X3OGanIHkr4nq:XoEhlUMzWyqEcqi0u7nBs

  Score

  10^/10

  redlinedomadiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1