Overview

overview

10

Static

static

dridex

windows10_x64

10

Analysis

  • max time kernel
    139s
  • max time network
    151s
  • platform
    windows10_x64
  • resource
    win10-en-20210920
  • submitted
    14-10-2021 05:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2e2bd7e768ae261118cd7f188808c0c2b2df6611106bf7cf53d4838e4714d788.exe

  • Size

    318KB

  • MD5

    96f8d58ff3de48d27d85159b16026a8e

  • SHA1

    24f90847ef555729dd36ed90d8ba9bf83ee3ea6a

  • SHA256

    2e2bd7e768ae261118cd7f188808c0c2b2df6611106bf7cf53d4838e4714d788

  • SHA512

    e1fe68acc70d05466b39ba3da878ef51aa49e3b729b116b9b48db360c64e5cb2962621cc1f456a54b97d6586f1651529b556e286b418ec492529912b2eae7c38

Score
10/10
redlineusamoneyinfostealer

Malware Config

Extracted

Family

redline

Botnet

usamoney

C2

45.142.215.47:27643

Signatures

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline
  • RedLine Payload 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2e2bd7e768ae261118cd7f188808c0c2b2df6611106bf7cf53d4838e4714d788.exe
    "C:\Users\Admin\AppData\Local\Temp\2e2bd7e768ae261118cd7f188808c0c2b2df6611106bf7cf53d4838e4714d788.exe"
    1⤵
      PID:2016

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2016-115-0x0000000000571000-0x0000000000594000-memory.dmp
      Filesize

      140KB

      Download
    • memory/2016-116-0x00000000021E0000-0x00000000021FF000-memory.dmp
      Filesize

      124KB

      Download
    • memory/2016-118-0x0000000000400000-0x00000000004C1000-memory.dmp
      Filesize

      772KB

      Download
    • memory/2016-119-0x0000000004D20000-0x0000000004D21000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2016-120-0x0000000004D22000-0x0000000004D23000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2016-122-0x0000000004D23000-0x0000000004D24000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2016-121-0x0000000004D30000-0x0000000004D31000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2016-117-0x00000000001C0000-0x00000000001F0000-memory.dmp
      Filesize

      192KB

      Download
    • memory/2016-123-0x00000000023D0000-0x00000000023ED000-memory.dmp
      Filesize

      116KB

      Download
    • memory/2016-124-0x0000000005230000-0x0000000005231000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2016-125-0x0000000004BE0000-0x0000000004BE1000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2016-126-0x0000000004C10000-0x0000000004C11000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2016-127-0x0000000005840000-0x0000000005841000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2016-128-0x00000000058C0000-0x00000000058C1000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2016-129-0x0000000004D24000-0x0000000004D26000-memory.dmp
      Filesize

      8KB

      Download