Extracted

• • Target

    3831ed6401db49d4e4294d6889376f76915b71483a33e0ef302b334c1a6d0050

  • Size

    1.1MB

  • MD5

    5eac764cd59b0ffe14dce4da3f2e696d

  • SHA1

    30884d3e6789ee73497c41cf21a3138cb363af5c

  • SHA256

    3831ed6401db49d4e4294d6889376f76915b71483a33e0ef302b334c1a6d0050

  • SHA512

    da5d0ced74e194d543f79af1fb362a14d7c4c47e0c9665cd63dc10c70d86195a7fcb2ffefb6621ee74aac9e2d8684cb22aec2025a5c506fb7843a52657e051bf

  • SSDEEP

    24576:YyteWMO9I0RVGY0VixSA3LKD6pZJmAM3lz+BDXJtf4mC159lA56x:fcWMT0RVGY0VixSSWD86Nqjrf4dT9eA

  Score

  10^/10

  redlinedomadiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1