Extracted

• • Target

    4102998b3b42f1ae5749a4da21bf3b88c4bf8a4ff1c67a7d7657e367d96e8b3a.exe

  • Size

    375KB

  • MD5

    d0e743cc3a263dde2f1909e00fef1490

  • SHA1

    73c505c75ee1dd7605f3ba7f68a669647ff84816

  • SHA256

    4102998b3b42f1ae5749a4da21bf3b88c4bf8a4ff1c67a7d7657e367d96e8b3a

  • SHA512

    d9909530e8a3a9736788656f4e51898679621ed037f325ddbe18a91626f164e8ab541c6a8a99588f2b3f4079ade5dd7b201a13be8bb9fd944f2bdcc283555468

  • SSDEEP

    6144:dop0yN90QEkmKItMqxYryblb5EYodA6LsfkvpCmOXh2UJOhnODmba:jy90ySSEzbUhAepi2UkhnO6ba

  Score

  10^/10

  redlinemostdiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1