Extracted

• • Target

    ba7d519f39962b77315d758744b3086a5c7c3be099e4bc80b5b54c28f8f88606

  • Size

    480KB

  • MD5

    ad454f5ce48fcc5bf156b514f61b2f42

  • SHA1

    236d676af8bc5d3e8dd415379087b2668e6abf94

  • SHA256

    ba7d519f39962b77315d758744b3086a5c7c3be099e4bc80b5b54c28f8f88606

  • SHA512

    87fda1c1c0811851dfb9de9bdc84d77d066e8e3dc07509d4f3a5fc6685f474f561c127060ee21b0c1e0f5267ddfc31ce73f5a7cd9575a818e65397da6781dd7e

  • SSDEEP

    12288:wMruy901TRZ/Bbq9295daZpbq1DhRvrHY1HtEP2w:OyOBe9MwqdhRvLUHGP2w

  Score

  10^/10

  redlinefukiadiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1