Extracted

• • Target

    84cc5ae72e3a541da3a7359d1d7030599e04fe8d10677c833f6184c4474148e7

  • Size

    567KB

  • MD5

    3681dc3073a8ab5a2606d47b8c1fdca1

  • SHA1

    84477034304d502989cdf85a79b4d626ac5910c8

  • SHA256

    84cc5ae72e3a541da3a7359d1d7030599e04fe8d10677c833f6184c4474148e7

  • SHA512

    becd379dd867b274a16409ded319384754584fdc4f680f97897c51dee1ebc3e2cdc1faeb20f3b641ac6c9a09b6c5a1ca13a209ca76a943741fba0f3de8035a0c

  • SSDEEP

    12288:aMr0y906X7hO9rVJ416GfnhjqkAvSTNQXhD3qPoTPnXRUMYuT2:GyjujOfhj4vSTyXomPBFYuK

  Score

  10^/10

  redlinedarmdiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1