New Variant of RedLine Stealer Uses Batch Script to Evade Detection

Threat Level – Amber | Vulnerability Report
Download PDF

A new variant of RedLine Stealer that is being distributed as a batch script file. This new variant of RedLine Stealer is more sophisticated than previous versions and uses a number of techniques to evade detection. For example, the malware is obfuscated and uses multiple layers of encryption. It also uses a variety of techniques to hide its presence on the victim’s system, such as creating hidden files and folders.

To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox