Overview

overview

10

Static

static

dridex

windows10_x64

10

Analysis

  • max time kernel
    146s
  • max time network
    149s
  • platform
    windows10_x64
  • resource
    win10-en-20210920
  • submitted
    20-10-2021 07:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f13598d7d4a3e47e9c1e86fd3c8da6ff8e7703ca07740632360eadacc46458f5.exe

  • Size

    405KB

  • MD5

    a7132676b1e3c739b3ed0010a9e14a96

  • SHA1

    8890e50cdde3d920b253426d12699cd22442fec2

  • SHA256

    f13598d7d4a3e47e9c1e86fd3c8da6ff8e7703ca07740632360eadacc46458f5

  • SHA512

    2b5591cc7b87a5c6e2d95d4d5ff8eafd3dcb9c7ac0d7b6ea83682a4b1b71802ec965f0fb3dad58df4130836ed74e4150ec1bb168f3bc0499f5faefe334cd7e77

Score
10/10
redlinepubinfostealer

Malware Config

Extracted

Family

redline

Botnet

PUB

C2

45.9.20.182:52236

Signatures

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline
  • RedLine Payload 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\f13598d7d4a3e47e9c1e86fd3c8da6ff8e7703ca07740632360eadacc46458f5.exe
    "C:\Users\Admin\AppData\Local\Temp\f13598d7d4a3e47e9c1e86fd3c8da6ff8e7703ca07740632360eadacc46458f5.exe"
    1⤵
      PID:376

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/376-117-0x0000000000400000-0x0000000002DBD000-memory.dmp

      Filesize

      41.7MB

      Download

    • memory/376-116-0x0000000002E40000-0x0000000002EEE000-memory.dmp

      Filesize

      696KB

      Download

    • memory/376-118-0x0000000005170000-0x0000000005171000-memory.dmp

      Filesize

      4KB

      Download

    • memory/376-119-0x0000000004A60000-0x0000000004A7F000-memory.dmp

      Filesize

      124KB

      Download

    • memory/376-120-0x00000000075A0000-0x00000000075A1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/376-121-0x0000000004E70000-0x0000000004E8D000-memory.dmp

      Filesize

      116KB

      Download

    • memory/376-122-0x0000000007AA0000-0x0000000007AA1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/376-123-0x0000000005030000-0x0000000005031000-memory.dmp

      Filesize

      4KB

      Download

    • memory/376-124-0x00000000080B0000-0x00000000080B1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/376-125-0x0000000005070000-0x0000000005071000-memory.dmp

      Filesize

      4KB

      Download

    • memory/376-126-0x0000000005172000-0x0000000005173000-memory.dmp

      Filesize

      4KB

      Download

    • memory/376-128-0x0000000005174000-0x0000000005176000-memory.dmp

      Filesize

      8KB

      Download

    • memory/376-127-0x0000000005173000-0x0000000005174000-memory.dmp

      Filesize

      4KB

      Download

    • memory/376-129-0x00000000050F0000-0x00000000050F1000-memory.dmp

      Filesize

      4KB

      Download