Overview

overview

10

Static

static

1

dridex

windows10-1703-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    08b3a7e03d023d1ac639d8f08b7525c472f397f724865aaf21ff1256cef0ba87

  • Size

    275KB

  • Sample

    230214-m4j3sscg87

  • MD5

    cb4b2d3e87dac40c3a06d0d863fbb923

  • SHA1

    a63bc0575e1a11c0fa71551d7a19165b0b9d41fd

  • SHA256

    08b3a7e03d023d1ac639d8f08b7525c472f397f724865aaf21ff1256cef0ba87

  • SHA512

    55a9f492831c7ad432bcdea09bc8c477df68be9479ec537cc243134271cccb747257a3fabd5512357071930fb449346ed3a57843f5dbd2a229d0a90b03c54090

  • SSDEEP

    6144:vSLndeoFQ6TPlEuSNim5rQckSYkm5grU3jpL9Iqa:vSRM6TPlEuSrrQDfX3R2D

Score
10/10
redlinediscoveryinfostealerspywarestealer

Malware Config

Targets

    • Target

      08b3a7e03d023d1ac639d8f08b7525c472f397f724865aaf21ff1256cef0ba87

    • Size

      275KB

    • MD5

      cb4b2d3e87dac40c3a06d0d863fbb923

    • SHA1

      a63bc0575e1a11c0fa71551d7a19165b0b9d41fd

    • SHA256

      08b3a7e03d023d1ac639d8f08b7525c472f397f724865aaf21ff1256cef0ba87

    • SHA512

      55a9f492831c7ad432bcdea09bc8c477df68be9479ec537cc243134271cccb747257a3fabd5512357071930fb449346ed3a57843f5dbd2a229d0a90b03c54090

    • SSDEEP

      6144:vSLndeoFQ6TPlEuSNim5rQckSYkm5grU3jpL9Iqa:vSRM6TPlEuSrrQDfX3R2D

    Score
    10/10
    redlinediscoveryinfostealerspywarestealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks