Extracted

• • Target

    16fc346b87d7e591a35d0f6aa018fdc471dc8ac6d65aaea2912d292e24a0965f

  • Size

    1.1MB

  • MD5

    1946c31c62492f7edbd5dbeca094a806

  • SHA1

    65b74a2e81e372ccef0542a51e5a1dd7a87cfd36

  • SHA256

    16fc346b87d7e591a35d0f6aa018fdc471dc8ac6d65aaea2912d292e24a0965f

  • SHA512

    8e89a200f37a89c48135f930b53148013f264c9fade89127a44579ccbb3d71b3f994a9b91cee0a6436880509d71df626aded1646129000b8adbddc3eca4950f7

  • SSDEEP

    24576:IyNrHnIU1El8nYuR//dE+qsoMYbNR90Bb1J49hIPfUIQJRCgbYuo:PNDIU1CPmY9ub1uQFSUV

  Score

  10^/10

  redlinedomadiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1