Extracted

• • Target

    ad8217d06ef8ce210e71fc6284ad41e47f87ea025b5b9ec37d84315ca61b4444

  • Size

    556KB

  • MD5

    97260190c2c11f87f7902c1b8d4928ff

  • SHA1

    f0106260bcc6a68010d1e64d343d6cc8b82b873f

  • SHA256

    ad8217d06ef8ce210e71fc6284ad41e47f87ea025b5b9ec37d84315ca61b4444

  • SHA512

    bd0a143b80b872d1743b07f755410feb3b2a6977626837c0f32f4a4c5d1ad1877ea66c277717c5d6a6a57c7d97a12cc6bf76aac5910094ac4f887507feba7f47

  • SSDEEP

    12288:kMrly90cHacUq+GX37xncOyimlyJGHxhaGhz1tpfKKs15:hyLX37xncOyKQrhzrE/H

  Score

  10^/10

  redlinedarmdiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1