Extracted

• • Target

    8c18622baa4db6735b9069720d3b8fa89c5083ab4a710de14c6f81fe40fb1874

  • Size

    1.5MB

  • MD5

    d17a7296854296498cea81650de3d942

  • SHA1

    7b1d4662be5b1e599525179798ff2a555a39c44a

  • SHA256

    8c18622baa4db6735b9069720d3b8fa89c5083ab4a710de14c6f81fe40fb1874

  • SHA512

    7c9dd3d3410443c7d89389fdc75b216acbd5f1c4d51033c3913cb410ac499fb68ba5d4870e8942ff8a6ad6273c8b4914accd23c56258a800f5dcfef4abf5690f

  • SSDEEP

    24576:Qy1e1jUyiY3huS4qLfnggsrFtpSE/h6nMOyhCSuf8VLAG0P:X1JyiYxf4qLMnv5kMOuC+9At

  Score

  10^/10

  redlinemostdiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1