Extracted

• • Target

    b237fba75c09f1dd82b992841d1bb03ea1ea661df5f8ef4f283964e1225724d3

  • Size

    277KB

  • MD5

    489659bd5dc88ad20f20a0273e322e77

  • SHA1

    60858714d5838d739710d17df909c3a601181238

  • SHA256

    b237fba75c09f1dd82b992841d1bb03ea1ea661df5f8ef4f283964e1225724d3

  • SHA512

    3e0a6dc8656e4bfa8c2f3d00611ae2800f4e7d99794ac57a83119dd812aa32f44a56defd3c5a3c249fe99a428f4e0d23924902f7b9da6ccd50478f052e0b9261

  • SSDEEP

    6144:KN30iL266hFiekerfygYXqo/kNea9qp/POMX:KN3RL2Rruqo/klqpXOMX

  Score

  10^/10

  redlinepub3discoveryinfostealer

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Uses the VBS compiler for execution

  • Suspicious use of SetThreadContext

  behavioral1behavioral2