Extracted

• • Target

    5dc4a0a6406b6ac48f0a38f9aae635bd300c5cdfd473fba9252bde996e120008

  • Size

    1.1MB

  • MD5

    4cecdfc961d9324d4065ef427a6b98ef

  • SHA1

    5663db5679b2fdaeb561f0c32623481e049e40a9

  • SHA256

    5dc4a0a6406b6ac48f0a38f9aae635bd300c5cdfd473fba9252bde996e120008

  • SHA512

    4f954430f05afb637b072c49d81c72d953049fe0eec64aca7819d1a2598f8515b742dfc1be06c0cd2345ba32b3c0e0265351daf43c2106afbd9914074ff5b951

  • SSDEEP

    24576:cyRSI8TJzGiUJFNcyp1X+/dN9ZgFXC5Vy6YPdRz6U:LII8TJTeGyby9ZjK6yd

  Score

  10^/10

  redlinedomadiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1