Overview

overview

10

Static

static

dridex

windows10_x64

10

Analysis

  • max time kernel
    150s
  • max time network
    151s
  • platform
    windows10_x64
  • resource
    win10-en-20211014
  • submitted
    21-10-2021 21:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4e50e3a9d832b0b59024b06d2990feec8eeee3792283d0e2c240794447a7fa7a.exe

  • Size

    337KB

  • MD5

    bdf0727b382ede6da12e7e2e6b4b0304

  • SHA1

    6f8f92d7b2f20fd2c58876c676f788530e984c6f

  • SHA256

    4e50e3a9d832b0b59024b06d2990feec8eeee3792283d0e2c240794447a7fa7a

  • SHA512

    d5e0c1637e52fce42128f0cf64c7072a850a53bc184f66a6a0cbfae4199ef1ea6caa939ed93a75a6b41fcaf87c32d35ee8d4a609e6ada787642df634ef3449c5

Score
10/10
redlinepubinfostealer

Malware Config

Extracted

Family

redline

Botnet

PUB

C2

45.9.20.182:52236

Signatures

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline
  • RedLine Payload 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\4e50e3a9d832b0b59024b06d2990feec8eeee3792283d0e2c240794447a7fa7a.exe
    "C:\Users\Admin\AppData\Local\Temp\4e50e3a9d832b0b59024b06d2990feec8eeee3792283d0e2c240794447a7fa7a.exe"
    1⤵
      PID:412

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/412-115-0x00000000030B0000-0x00000000030D2000-memory.dmp
      Filesize

      136KB

      Download
    • memory/412-116-0x00000000030E0000-0x0000000003110000-memory.dmp
      Filesize

      192KB

      Download
    • memory/412-117-0x0000000004F20000-0x0000000004F3F000-memory.dmp
      Filesize

      124KB

      Download
    • memory/412-118-0x00000000076B0000-0x00000000076B1000-memory.dmp
      Filesize

      4KB

      Download
    • memory/412-119-0x0000000004FC0000-0x0000000004FDD000-memory.dmp
      Filesize

      116KB

      Download
    • memory/412-120-0x0000000007BB0000-0x0000000007BB1000-memory.dmp
      Filesize

      4KB

      Download
    • memory/412-121-0x0000000005220000-0x0000000005221000-memory.dmp
      Filesize

      4KB

      Download
    • memory/412-122-0x00000000081C0000-0x00000000081C1000-memory.dmp
      Filesize

      4KB

      Download
    • memory/412-123-0x0000000000400000-0x0000000002F1B000-memory.dmp
      Filesize

      43.1MB

      Download
    • memory/412-124-0x0000000004EF0000-0x0000000004EF1000-memory.dmp
      Filesize

      4KB

      Download
    • memory/412-125-0x0000000004EF2000-0x0000000004EF3000-memory.dmp
      Filesize

      4KB

      Download
    • memory/412-126-0x0000000004EF3000-0x0000000004EF4000-memory.dmp
      Filesize

      4KB

      Download
    • memory/412-127-0x0000000004EF4000-0x0000000004EF6000-memory.dmp
      Filesize

      8KB

      Download
    • memory/412-128-0x00000000082D0000-0x00000000082D1000-memory.dmp
      Filesize

      4KB

      Download
    • memory/412-129-0x0000000008340000-0x0000000008341000-memory.dmp
      Filesize

      4KB

      Download