Overview

overview

10

Static

static

dridex

windows10_x64

10

Analysis

  • max time kernel
    65s
  • max time network
    135s
  • platform
    windows10_x64
  • resource
    win10v20210408
  • submitted
    14-10-2021 07:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f0b5a7fe9f593ebdfa51aa578f0080a3fd8d8078563b044051bb6832fa1cf739.exe

  • Size

    379KB

  • MD5

    771773a77fb22faef478d4ba55c70b8a

  • SHA1

    bead39600336ddad304e3626e2b444d489c07ef4

  • SHA256

    f0b5a7fe9f593ebdfa51aa578f0080a3fd8d8078563b044051bb6832fa1cf739

  • SHA512

    435bae9ffad982d9ebf8e842722665658ba455a38024f03057e83b215ce430a95bd95d7b4d69e08cab7b24632ef5b0a65c3f0e584c696da38ae4425b3bb35831

Score
10/10
redlineinfostealer

Malware Config

Signatures

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline
  • RedLine Payload 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\f0b5a7fe9f593ebdfa51aa578f0080a3fd8d8078563b044051bb6832fa1cf739.exe
    "C:\Users\Admin\AppData\Local\Temp\f0b5a7fe9f593ebdfa51aa578f0080a3fd8d8078563b044051bb6832fa1cf739.exe"
    1⤵
      PID:656

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/656-116-0x0000000000400000-0x00000000004D1000-memory.dmp
      Filesize

      836KB

      Download
    • memory/656-115-0x00000000001C0000-0x0000000000200000-memory.dmp
      Filesize

      256KB

      Download
    • memory/656-117-0x0000000002270000-0x00000000022AF000-memory.dmp
      Filesize

      252KB

      Download
    • memory/656-118-0x0000000004B20000-0x0000000004B21000-memory.dmp
      Filesize

      4KB

      Download
    • memory/656-119-0x0000000004A70000-0x0000000004AAE000-memory.dmp
      Filesize

      248KB

      Download
    • memory/656-120-0x0000000004B10000-0x0000000004B11000-memory.dmp
      Filesize

      4KB

      Download
    • memory/656-121-0x0000000004B12000-0x0000000004B13000-memory.dmp
      Filesize

      4KB

      Download
    • memory/656-122-0x0000000004B13000-0x0000000004B14000-memory.dmp
      Filesize

      4KB

      Download
    • memory/656-123-0x0000000004B14000-0x0000000004B16000-memory.dmp
      Filesize

      8KB

      Download
    • memory/656-124-0x0000000005020000-0x0000000005021000-memory.dmp
      Filesize

      4KB

      Download