Extracted

• • Target

    6faa06391c695659f013700d1169f15b2505524e6b52b2d4db03a4541daec5f6

  • Size

    1.1MB

  • MD5

    36ca21c7d9cb5be1f760f18fe03cea45

  • SHA1

    0e6c664f24b45a93439de75095880a0dc359dc10

  • SHA256

    6faa06391c695659f013700d1169f15b2505524e6b52b2d4db03a4541daec5f6

  • SHA512

    df06e3d4ac2eff13396428a9814c1d7bfdf0afe950700d53681568ec23805cf52600e67fcb99e7d5e5f4ef53bce5b7914e312a47068f892d0f018764084e593c

  • SSDEEP

    24576:hyc0XduWmKJRjRgcGC5aWw5DhNH4dl+8drV5jsXwqnx/pkKfTIH3anxC:UNdBjOa7eNH4v+8dYXw8qKfTIH3anx

  Score

  10^/10

  redlinedomadiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1