Extracted

• • Target

    1b1cfa23b200fc7e9f6c85cfbac5c13e799f9148afad2ae076d47f42f32b498b

  • Size

    770KB

  • MD5

    2712c78287fea8948d5d79d596b69332

  • SHA1

    ef248c4a535fb3d9fd52a4d296a52947b8d47334

  • SHA256

    1b1cfa23b200fc7e9f6c85cfbac5c13e799f9148afad2ae076d47f42f32b498b

  • SHA512

    b58dca399e59d64cd00dae7998a84a73c1206645fae8d72b3b08cee02b10ddbb52fd0ac5c409bece294103362dbfca1bc3560bbf157db81d9ea85256182a24ef

  • SSDEEP

    12288:mMrKy90X49OEzfHeeAz18nWPQ9WFDi0bUCbPbkvouEXErjcfOzlSUshG:ky+Ez9AxS+titC/kDWErjcClGhG

  Score

  10^/10

  redlinedebrodiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1