Extracted

• • Target

    4f63e5cefd90a4a3353a4a7308d37fa040ed12861206f25fae4b5084e372831e

  • Size

    554KB

  • MD5

    3b54959c49d84ed2d30c687318ad27ab

  • SHA1

    210e5460b0b77ffc635b03a8739952bf86428794

  • SHA256

    4f63e5cefd90a4a3353a4a7308d37fa040ed12861206f25fae4b5084e372831e

  • SHA512

    a6a27b3fb7d98e9981731412a17860191a65b19034429f108046958c29afd76c7dcc64a61e2a18e150ec960098e604daf7ff459faec0538c59a1833f986fba82

  • SSDEEP

    12288:RMrSy90eeIrF/DQb1V+YoWAMxg6N2tBL+:PyvN1DMuWTW6w7L+

  Score

  10^/10

  redlinedarmdiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1