Extracted

• • Target

    d5ef4a11b4172b81d43ffa684090a87693f191377890f6767878166580155716

  • Size

    556KB

  • MD5

    7dd305a12097da70cb4320313cb873bc

  • SHA1

    0fd4f1ebafa0c24b4387442137b1c5a922a14921

  • SHA256

    d5ef4a11b4172b81d43ffa684090a87693f191377890f6767878166580155716

  • SHA512

    478b4ff97a0bc73037885b4173018367d7ef7092bc86f15725d5f317fbc382d4c6f18bff677f8ee0d87dcdebfc37af070f9195252c341bba7aaac9170f23f8f8

  • SSDEEP

    12288:HMrUy90ElnZLWrzbC95rwcIzxmXgu/TORjmfz4LM2/u3Y90:Lywa8NmXgu/ydmfz4o2GIu

  Score

  10^/10

  redlinedarmdiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1