It scans for and exfiltrates data from crypto-wallet extensions and desktop applications.
The malware is rarely labeled "malware." Instead, it is disguised to trick users into manual execution: We installed RedLine InfoStealer (Malware) Redline Crack.zip
Login information for FTP clients (e.g., FileZilla), VPNs (e.g., NordVPN, ProtonVPN), and gaming platforms like Steam or Discord. It scans for and exfiltrates data from crypto-wallet
Gathers hardware configuration, IP addresses, location data, and lists of installed software. Common Distribution Methods credit card details
Saved passwords, cookies, credit card details, and autocomplete information from popular browsers like Chrome and Firefox.