Extracted

• • Target

    27ad0243f221f0bceeb66229e9c46e21024647de65bc90f5e382b6816ad8ffc8

  • Size

    556KB

  • MD5

    6676097d327c9e618258d9f1424cee56

  • SHA1

    87b1c39fb6e3d7e92862066a7c7877c0f6861acd

  • SHA256

    27ad0243f221f0bceeb66229e9c46e21024647de65bc90f5e382b6816ad8ffc8

  • SHA512

    86ddfa41d358e7ab40dd7f14e4a8338c58550774b7cf609674b7eb003a5d52f9021ce053c57192636e162f66f21a1a0975d2268d4b1614a79fbe3ed4c57f4c86

  • SSDEEP

    12288:+Mr2y908ftABu/bh9ZzATaua8F/2FSuVqjnm0//jVrRqq:cyff5/lATauadVqjl//5Rqq

  Score

  10^/10

  redlinedarmdiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1