Extracted

• • Target

    58da13ff12b011b8697abebc81e06e4c4de0a5ccf7b79a1c890129a421e139ff

  • Size

    1.1MB

  • MD5

    d492478f3b44e5ba12ea6be00035d31b

  • SHA1

    49006b33b36cad08f86a21bdad44f03ea7c3b7f4

  • SHA256

    58da13ff12b011b8697abebc81e06e4c4de0a5ccf7b79a1c890129a421e139ff

  • SHA512

    eaae388f5524f5ae6b33ef1120318aae71db9c07cc0019854d88e344ac46da4a735c526b17daa42db63a44928c4a6b2773dd692771867be7a20776d911fb1156

  • SSDEEP

    24576:DyXxsgG1SIaePTCSxZhaDQo3kOUkjA17K67Pq:WPGsI3lUvUOUF7bz

  Score

  10^/10

  redlinedomadiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1