Overview

overview

10

Static

static

dridex

windows10_x64

10

Analysis

  • max time kernel
    149s
  • max time network
    164s
  • platform
    windows10_x64
  • resource
    win10-en-20210920
  • submitted
    21-10-2021 21:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ba270ce2c086cf0f9c506c2a5237c54d710c8f515a81b206b4fa0702842ff1a1.exe

  • Size

    337KB

  • MD5

    8bc20376513f42f4c466ce38b2a5bdf4

  • SHA1

    6eea0e03b892b367828178340cd3d4a2718ebb1b

  • SHA256

    ba270ce2c086cf0f9c506c2a5237c54d710c8f515a81b206b4fa0702842ff1a1

  • SHA512

    bcaf46d27fade9a8eb630e9e03a97a9467abd685cffe9cf8a187ba132affcedbadaddc2c50478ff560877a138d6fc0f3b2082c6f2aee35b0cadac1339773a3a4

Score
10/10
redlineudpinfostealer

Malware Config

Extracted

Family

redline

Botnet

UDP

C2

45.9.20.182:52236

Signatures

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline
  • RedLine Payload 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\ba270ce2c086cf0f9c506c2a5237c54d710c8f515a81b206b4fa0702842ff1a1.exe
    "C:\Users\Admin\AppData\Local\Temp\ba270ce2c086cf0f9c506c2a5237c54d710c8f515a81b206b4fa0702842ff1a1.exe"
    1⤵
      PID:760

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/760-115-0x0000000004F00000-0x0000000004F1F000-memory.dmp
      Filesize

      124KB

      Download
    • memory/760-117-0x00000000031D0000-0x0000000003200000-memory.dmp
      Filesize

      192KB

      Download
    • memory/760-116-0x0000000003190000-0x00000000031B2000-memory.dmp
      Filesize

      136KB

      Download
    • memory/760-118-0x0000000000400000-0x0000000002F1B000-memory.dmp
      Filesize

      43.1MB

      Download
    • memory/760-120-0x0000000007790000-0x0000000007791000-memory.dmp
      Filesize

      4KB

      Download
    • memory/760-121-0x0000000007782000-0x0000000007783000-memory.dmp
      Filesize

      4KB

      Download
    • memory/760-119-0x0000000007780000-0x0000000007781000-memory.dmp
      Filesize

      4KB

      Download
    • memory/760-122-0x0000000007783000-0x0000000007784000-memory.dmp
      Filesize

      4KB

      Download
    • memory/760-123-0x00000000075B0000-0x00000000075CD000-memory.dmp
      Filesize

      116KB

      Download
    • memory/760-124-0x0000000007C90000-0x0000000007C91000-memory.dmp
      Filesize

      4KB

      Download
    • memory/760-125-0x0000000007660000-0x0000000007661000-memory.dmp
      Filesize

      4KB

      Download
    • memory/760-126-0x00000000082A0000-0x00000000082A1000-memory.dmp
      Filesize

      4KB

      Download
    • memory/760-127-0x0000000007690000-0x0000000007691000-memory.dmp
      Filesize

      4KB

      Download
    • memory/760-128-0x0000000007784000-0x0000000007786000-memory.dmp
      Filesize

      8KB

      Download
    • memory/760-129-0x0000000007710000-0x0000000007711000-memory.dmp
      Filesize

      4KB

      Download