Extracted

• • Target

    25ca6357645eb71df7da45d2b869370c52a23431f9378e996c4416cec965fcb7

  • Size

    1.1MB

  • MD5

    fa1b44ac635ddd4c819ed92d0f52e656

  • SHA1

    0e875cff08cd78fdd80479ae01766e05be5b6d92

  • SHA256

    25ca6357645eb71df7da45d2b869370c52a23431f9378e996c4416cec965fcb7

  • SHA512

    7a71252b059211e1b035eea0134b527a23ffc1acfccebde280553f661481dd3ea8a69e7552c683b1e8b92ad3092d1dea52d7c748086a5bdc2e08ab20be0411a2

  • SSDEEP

    24576:kyqbmfzddd0bWrGe7TVKrXpLsWBJCWtqFm3uGAEAyab80wjH:zVr7d0bWrVHVKrXp5DVt3uG39lj

  Score

  10^/10

  redlinedomadiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1