Extracted

• • Target

    495aae8859a6cf240033dfb3ae7bc0b91864f2ede0556f2ee9d2e346bebceaa6

  • Size

    479KB

  • MD5

    28c591910d03db14b27828450471e1df

  • SHA1

    05cd76f282718a94ac0d45b2a087015e4d3d2cf7

  • SHA256

    495aae8859a6cf240033dfb3ae7bc0b91864f2ede0556f2ee9d2e346bebceaa6

  • SHA512

    dd0b6161a6282c29b4c6ab20a3ee9b5c21fe8fe3ab09ee46ef0066b11feddcdf1feaddf788bd08f763ae23e48d0eb7d5cb967952131ddc1bc6417aca1a75a455

  • SSDEEP

    12288:lMrgy90XkkEKPFeAQFT9u9X3RdVHc+j+0iQy+zula0sqC:RyIkiU/w1H1jBiQy+z8a0sx

  Score

  10^/10

  redlinedumuddiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1