Gridinsoft Logo

Unlock_Tool_3.0.exe Malware RedLine Analysis

Malware RedLine
Updated on 2024-03-16 (8 months ago)
Checked by Online Virus Scanner
Online Virus Checker v.1.0.169.174
DB Version: 2024-03-16 05:00:22

Malware.Win32.RedLine.tr

RedLine Stealer is a malicious program designed to exfiltrate users’ confidential data from browsers, systems, and installed software. It is often delivered through email attachments or compromised websites. RedLine not only steals sensitive information but also poses a significant threat by introducing other malware into the victim's operating system. This two-pronged attack approach makes RedLine a potent and dangerous cyber threat.

File Unlock_Tool_3.0.exe
Checked 2024-03-16 03:53:04
MD5 dce4b7cc5d545a15fe87824a6cc4eb8c
SHA1 533f982fb148bc7ec17c028df4d128b036b579ff
SHA256 fea43fd0b4e01c02a0b4d04413fdab976eee6a36e7364a39f43512ca74de9219
SHA512 d45400977c6e58334d344ab4f4078d63587968c254cfaa5c3b91799b6df4afd501839ed2e8a657e4ef9eb8aaec07e28be9a3fb4696524470a4a402aab1ddc9ab
Imphash f34d5f2d4577ed6d9ceec516c1f5a744
File Size 363144 bytes

Malware.Win32.RedLine.tr Removal

Malware.Win32.RedLine.tr Removal

Gridinsoft has the capability to identify and eliminate Malware.Win32.RedLine.tr without requiring further user intervention.

  • Start by downloading Gridinsoft Anti-Malware to your computer.
  • Double-click on the gsam-en-install.exe file and follow the on-screen instructions to install the program.
  • Once the installation of Gridinsoft Anti-Malware is complete, the program will open on the Scan screen.
  • Click on the "Standard Scan" button.
  • After the scanning process is finished, click on "Clean Now" to remove any detected threats.
  • If prompted, restart your system to complete the removal process.

File Version Information

Translation 0x0000 0x04b0
FileDescription Corbie
FileVersion 1.0.0.3
InternalName Together.exe
LegalCopyright Copyright © 2023
OriginalFilename Together.exe
ProductName Corbie
ProductVersion 1.0.0.3
Assembly Version 1.0.0.3

Portable Executable Info

Image Base: 0x00400000
Entry Point: 0x0045505e
Compilation: 2024-03-15 11:08:12
Checksum: 0x00000000 (Actual: 0x0005dad6)
OS Version: 4.0
PDB Path: Together.pdb
PEiD: PE32 executable (console) Intel 80386 Mono/.Net assembly, for MS Windows
Sign: The expected hash does not match the digest in SpcInfo
Sections: 3
Imports: mscoree,
Exports: 0
Resources: 2

Sections

Name Virtual Address Virtual Size Raw Size MD5 Entropy
.text 0x00002000 0x00053064 0x00053200 752fafd82127d25b1d28bca2c5b49ff8 7.94
.rsrc 0x00056000 0x00000534 0x00000600 4bf3cf2d14edbdc9ccf6ec4c17b620fb 3.91
.reloc 0x00058000 0x0000000c 0x00000200 bd2d0910728ee9c3024d07adf58c3a1d 0.10

Leave a comment *

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Gridinsoft Anti-Malware