Extracted

• • Target

    9efc10b8fa8b7dc785f08e49b41b534a1389b7bfc47a30f21c75c6549ae35b89N.exe

  • Size

    749KB

  • MD5

    221aca187070d31fa2812834f36cfc10

  • SHA1

    6bd43da252817b1cbce98eb6a435b532d74bfd53

  • SHA256

    9efc10b8fa8b7dc785f08e49b41b534a1389b7bfc47a30f21c75c6549ae35b89

  • SHA512

    2feb5cfc9375f3027ea1a20dc1496363778546bc40854aeefb9494ab997606a884b1dd0d8a5dcca1ae7cf382bb4c2eac58166cb3460789b84ad654e41685954d

  • SSDEEP

    12288:OMrEy90iIdX8fZO30Uwh9c/rTA/Iw9VRHZX7H1Qv+Jv9RxPAaCReJKnsyNk:uytI9iZU0UKUwHp7ajR3syNk

  Score

  10^/10

  redlinedomadiscoveryinfostealerpersistence

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline

  • RedLine payload

  • Redline family

    redline

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1