Extracted

• • Target

    c38b804811fdffe3f3e3aaf89496df2b69a5ca8e202c27d47c0b9f361214b588

  • Size

    1.1MB

  • MD5

    cf5ddc93c9ea8f58ea2e02a810e775a2

  • SHA1

    47cbe4eb9c02759b926f348c6878fae66c3b3af4

  • SHA256

    c38b804811fdffe3f3e3aaf89496df2b69a5ca8e202c27d47c0b9f361214b588

  • SHA512

    52e1897ee6ad67705740cbed9f7a074fcd7e205b212a4a968238d9bfd3b5cc2eeae6067ed8d47e94a5de1411d0c80aa417705b85ca773e3b753c90a83fa35e6d

  • SSDEEP

    24576:uy1B1Ra1ecvA5+pn4+8tpfcSZ2t614tjcI:915apI5Yn4tpfek1wc

  Score

  10^/10

  redlinedomadiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1