New Variant of RedLine Stealer Uses Batch Script to Evade Detection
New Variant of RedLine Stealer Uses Batch Script to Evade Detection
Threat Level
Attack Report
For a detailed threat advisory, download the pdf file here
Summary
A new variant of RedLine Stealer that is being distributed as a batch script file. This new variant of RedLine Stealer is more sophisticated than previous versions and uses a number of techniques to evade detection. For example, the malware is obfuscated and uses multiple layers of encryption. It also uses a variety of techniques to hide its presence on the victim’s system, such as creating hidden files and folders.
To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.