Overview

overview

10

Static

static

dridex

windows10_x64

10

Analysis

  • max time kernel
    139s
  • max time network
    148s
  • platform
    windows10_x64
  • resource
    win10-en-20211014
  • submitted
    24-10-2021 09:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2aea126c7ef0085ec5c09c1ebecc950f94be3c04ba5eb384e4e47f28a68f5f6d.exe

  • Size

    410KB

  • MD5

    d7f1e732f1cc699c59cc97aa9558d377

  • SHA1

    b84a5ef61f2b283b9924922bef52344577341c78

  • SHA256

    2aea126c7ef0085ec5c09c1ebecc950f94be3c04ba5eb384e4e47f28a68f5f6d

  • SHA512

    ae0c2ca13c715e670369d99814d6ccadfc8bd74c23959df1069c653f8a7386295b8f2105d803740c76cb80a6d9641802b33c91d77175d86822fe061f414b6851

Score
10/10
redlineudpinfostealer

Malware Config

Extracted

Family

redline

Botnet

UDP

C2

45.9.20.182:52236

Signatures

  • RedLine

    RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    infostealerredline
  • RedLine Payload 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2aea126c7ef0085ec5c09c1ebecc950f94be3c04ba5eb384e4e47f28a68f5f6d.exe
    "C:\Users\Admin\AppData\Local\Temp\2aea126c7ef0085ec5c09c1ebecc950f94be3c04ba5eb384e4e47f28a68f5f6d.exe"
    1⤵
      PID:2844

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2844-116-0x00000000001C0000-0x00000000001F0000-memory.dmp
      Filesize

      192KB

      Download
    • memory/2844-117-0x0000000000400000-0x0000000001037000-memory.dmp
      Filesize

      12.2MB

      Download
    • memory/2844-118-0x0000000005720000-0x0000000005721000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2844-119-0x0000000003000000-0x000000000301F000-memory.dmp
      Filesize

      124KB

      Download
    • memory/2844-120-0x0000000005730000-0x0000000005731000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2844-121-0x00000000056A0000-0x00000000056BD000-memory.dmp
      Filesize

      116KB

      Download
    • memory/2844-122-0x0000000005C30000-0x0000000005C31000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2844-124-0x0000000005723000-0x0000000005724000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2844-123-0x0000000005722000-0x0000000005723000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2844-125-0x0000000006290000-0x0000000006291000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2844-126-0x00000000062B0000-0x00000000062B1000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2844-127-0x0000000005724000-0x0000000005726000-memory.dmp
      Filesize

      8KB

      Download
    • memory/2844-128-0x00000000063C0000-0x00000000063C1000-memory.dmp
      Filesize

      4KB

      Download
    • memory/2844-129-0x0000000006430000-0x0000000006431000-memory.dmp
      Filesize

      4KB

      Download