Extracted

• • Target

    9a0ec5b40399889ddf61368ee848626cdc5f98fb7264ab1a504e6afd2801b64b

  • Size

    565KB

  • MD5

    2ea6d65da71fefcf0fc423b57ca36133

  • SHA1

    2fa80a4aba428ae05d45b149cd159acd7b7acf98

  • SHA256

    9a0ec5b40399889ddf61368ee848626cdc5f98fb7264ab1a504e6afd2801b64b

  • SHA512

    779c278e0004d188a63f95f9fc3f7238d9c99e92cd3920e2cf0e7ffdbdf750e30f58e7aec797352694076dcd7f144c5aed783598f95286907cdf2496521497fd

  • SSDEEP

    12288:TMrBy903gSN714+yGXnh4S10NFABghqNstu2UYw8KOPtJaRHkf2sPlcd:OyMgSNJ4mnhl1ZNstulnQfaRtag

  Score

  10^/10

  redlineronurdiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1