Overview

overview

10

Static

static

dridex

windows10_x64

10

Analysis

  • max time kernel
    147s
  • max time network
    162s
  • platform
    windows10_x64
  • resource
    win10-en-20210920
  • submitted
    22-10-2021 18:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    15a1d74404f030bf2aa8ee072173bc7e5481a5a43dd84944a5c3924d1d1f5cdf.exe

  • Size

    419KB

  • MD5

    1b3cbf4fae9ad80121084022e2741b5c

  • SHA1

    0c08925a65ddef5531ee70fa26ad666965fb7fc8

  • SHA256

    15a1d74404f030bf2aa8ee072173bc7e5481a5a43dd84944a5c3924d1d1f5cdf

  • SHA512

    5b12367e9d33359d9b7a428832aa5527148ab50ea5e22869a036cf569d5a2079f9a5167b98b4241bb26e93bcdbc1ba8dec0b62d8ed4002cf75d24a05adf17347

Score
10/10
redlinepubinfostealer

Malware Config

Extracted

Family

redline

Botnet

PUB

C2

45.9.20.182:52236

Signatures

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline
  • RedLine Payload 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\15a1d74404f030bf2aa8ee072173bc7e5481a5a43dd84944a5c3924d1d1f5cdf.exe
    "C:\Users\Admin\AppData\Local\Temp\15a1d74404f030bf2aa8ee072173bc7e5481a5a43dd84944a5c3924d1d1f5cdf.exe"
    1⤵
      PID:3752

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/3752-115-0x0000000000B46000-0x0000000000B69000-memory.dmp
      Filesize

      140KB

      Download
    • memory/3752-116-0x00000000008A0000-0x000000000094E000-memory.dmp
      Filesize

      696KB

      Download
    • memory/3752-117-0x0000000000400000-0x0000000000898000-memory.dmp
      Filesize

      4.6MB

      Download
    • memory/3752-118-0x0000000000B10000-0x0000000000B2F000-memory.dmp
      Filesize

      124KB

      Download
    • memory/3752-119-0x0000000005140000-0x0000000005141000-memory.dmp
      Filesize

      4KB

      Download
    • memory/3752-120-0x0000000002740000-0x000000000275D000-memory.dmp
      Filesize

      116KB

      Download
    • memory/3752-121-0x0000000005640000-0x0000000005641000-memory.dmp
      Filesize

      4KB

      Download
    • memory/3752-122-0x0000000002900000-0x0000000002901000-memory.dmp
      Filesize

      4KB

      Download
    • memory/3752-123-0x0000000004FA0000-0x0000000004FA1000-memory.dmp
      Filesize

      4KB

      Download
    • memory/3752-124-0x0000000005130000-0x0000000005131000-memory.dmp
      Filesize

      4KB

      Download
    • memory/3752-126-0x0000000005133000-0x0000000005134000-memory.dmp
      Filesize

      4KB

      Download
    • memory/3752-125-0x0000000005132000-0x0000000005133000-memory.dmp
      Filesize

      4KB

      Download
    • memory/3752-127-0x0000000005134000-0x0000000005136000-memory.dmp
      Filesize

      8KB

      Download
    • memory/3752-128-0x0000000002A60000-0x0000000002A61000-memory.dmp
      Filesize

      4KB

      Download
    • memory/3752-129-0x0000000002AD0000-0x0000000002AD1000-memory.dmp
      Filesize

      4KB

      Download