Extracted

• • Target

    0aa0553869904b43b50c6a7c86fb9a8538b975df29523503b0b887e97afe3187

  • Size

    567KB

  • MD5

    c311b5571c347b95d05ca3298b475de8

  • SHA1

    08307201c0f92d257cceaa3a50a51241b7ce4d7e

  • SHA256

    0aa0553869904b43b50c6a7c86fb9a8538b975df29523503b0b887e97afe3187

  • SHA512

    6c92274701f9f6c08432ca76ca331efaba56e2d5346bf4fa676b8544257f25f1db6ff6a3222fd584ccea3b19fa3d3b1c7a4af31a6ffd4d2589b2ba82304a5b29

  • SSDEEP

    12288:zMrdy90EazSLEZZAwVV3M5IY1NWV84CU/lRZuHoa4dvpxhNV4:GyhtWVV85oOU/ToIRvpxzC

  Score

  10^/10

  redlinedarmdiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1