Overview

overview

10

Static

static

dridex

windows10_x64

10

Analysis

  • max time kernel
    151s
  • max time network
    148s
  • platform
    windows10_x64
  • resource
    win10-en-20211014
  • submitted
    22-10-2021 18:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b4b3c07621dcdce5edfb5d6441319f2b093cf5b55e86a793cdb979b498844047.exe

  • Size

    408KB

  • MD5

    bc0366904a2178050cb93a0c41bc7a59

  • SHA1

    674f8235b3f876fa6577c56c9d6432cf8f84bbd5

  • SHA256

    b4b3c07621dcdce5edfb5d6441319f2b093cf5b55e86a793cdb979b498844047

  • SHA512

    f763b1c2c68a7c6c29629c37f1a75e437d30a309e9002ac7cfd7592ef231e3d1ee3f8cf2e495291a2a77a99d18b2e0a815ff164f89c3d854c0f97da5fa1c7aee

Score
10/10
redlineudpinfostealer

Malware Config

Extracted

Family

redline

Botnet

UDP

C2

45.9.20.182:52236

Signatures

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline
  • RedLine Payload 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\b4b3c07621dcdce5edfb5d6441319f2b093cf5b55e86a793cdb979b498844047.exe
    "C:\Users\Admin\AppData\Local\Temp\b4b3c07621dcdce5edfb5d6441319f2b093cf5b55e86a793cdb979b498844047.exe"
    1⤵
      PID:2704

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2704-117-0x0000000000400000-0x0000000000895000-memory.dmp
      Filesize

      4.6MB

      Download
    • memory/2704-116-0x0000000000D00000-0x0000000000D30000-memory.dmp
      Filesize

      192KB

      Download
    • memory/2704-118-0x0000000004EB0000-0x0000000004EB1000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2704-119-0x0000000002610000-0x000000000262F000-memory.dmp
      Filesize

      124KB

      Download
    • memory/2704-120-0x0000000004EC0000-0x0000000004EC1000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2704-121-0x0000000002900000-0x000000000291D000-memory.dmp
      Filesize

      116KB

      Download
    • memory/2704-122-0x00000000053C0000-0x00000000053C1000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2704-124-0x0000000004EB3000-0x0000000004EB4000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2704-123-0x0000000004EB2000-0x0000000004EB3000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2704-125-0x0000000004E70000-0x0000000004E71000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2704-126-0x00000000059D0000-0x00000000059D1000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2704-127-0x0000000005AE0000-0x0000000005AE1000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2704-128-0x0000000004EB4000-0x0000000004EB6000-memory.dmp
      Filesize

      8KB

      Download
    • memory/2704-129-0x0000000005B50000-0x0000000005B51000-memory.dmp
      Filesize

      4KB

      Download