Attention: We have transitioned to a new AAD or Microsoft Entra ID from the week of May 20, 2024. In case your tenant requires admin consent, please refer to this document located at Overview of user and admin consent - Microsoft Entra ID | Microsoft Learn and grant access to App ID: 6ba09155-cb24-475b-b24f-b4e28fc74365 with graph permissions for Directory.Read.All and User.Read for continued access. While the app may appear unverified, you can confirm its legitimacy by verifying the App ID provided.
500 entries found.
Displaying page 4
of 25.
Trojan:Win32/Redline.FG!MTB
Updated on Jun 20, 2022
This is a generic detection for RedLine packer. The final payload of it is a MSIL file.
First observed in 2020 and advertised on various cybercriminal forums as a malware-as-a-service (MaaS), RedLine is an information stealer mainly targeting Windows user credentials and cryptocurrency wallets, as well as browser information, FTP connections, game chat launchers, and OS information like system hardware, processes names, time zone, IP address, geolocation information, OS version, and default language.
For information about RedLine and other human-operated malware campaigns, read these blog posts:
Alert level:
severe