Extracted

• • Target

    db1edca29d8b6093db1fcb5e859e1e9d889e1476542ca3ea475d3404ef7d32f0N.exe

  • Size

    1.5MB

  • MD5

    14bc2b2d5f1d564bce6ba169aa3d6193

  • SHA1

    7d32252a30f6d9706786713ae8ef8677362100ff

  • SHA256

    760cd792f50a692ddc7ef5672ac9786444a51319d4f595e66781d9da27c9905e

  • SHA512

    8194e180e31c8c4bab1aa9710178c7e88f4217f585064adf6653d742c9ca60980b033b1567bb89c137911e54082e489470553a3aa237393edc0c1244b26888bd

  • SSDEEP

    24576:fyiI3Kt5vJgir9Wy05CW1S3Ikn58qLQjrGq7cyezATdf6ROHjPRkNugXswZLb:qiI3A6S0y0oKS3Ik58sQjjRYA9BDYugV

  Score

  10^/10

  redlinemostdiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1