Overview

overview

10

Static

static

1

dridex

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c91a55c75be1fbd56ab76719cf61c359b618b10cf1216bec5f4e986111cc8f6c

  • Size

    286KB

  • Sample

    230304-ryw8dsec53

  • MD5

    58e5d31714bc82710f12c8a7003359e1

  • SHA1

    bc31248289e2f24c4c1d3a07408036d68567b347

  • SHA256

    c91a55c75be1fbd56ab76719cf61c359b618b10cf1216bec5f4e986111cc8f6c

  • SHA512

    e1bea6d20722978b55884539c70985a96ecea033bf5e1c9647c98d87bb5ad2ed17aa3c638f5e69641df9a1be3639706d46888086298ac5d6d6084511d784061d

  • SSDEEP

    3072:eF3NU7X9OPbetwYaMyt+ZZFFB66SbDGegj1XWpKroOSzaC0zOWM6tfKCaURH9FUT:6QXgPbetn/e9DGezECzb0zO6i+HC0K

Score
10/10
redlinediscoveryinfostealerspywarestealer

Malware Config

Targets

    • Target

      c91a55c75be1fbd56ab76719cf61c359b618b10cf1216bec5f4e986111cc8f6c

    • Size

      286KB

    • MD5

      58e5d31714bc82710f12c8a7003359e1

    • SHA1

      bc31248289e2f24c4c1d3a07408036d68567b347

    • SHA256

      c91a55c75be1fbd56ab76719cf61c359b618b10cf1216bec5f4e986111cc8f6c

    • SHA512

      e1bea6d20722978b55884539c70985a96ecea033bf5e1c9647c98d87bb5ad2ed17aa3c638f5e69641df9a1be3639706d46888086298ac5d6d6084511d784061d

    • SSDEEP

      3072:eF3NU7X9OPbetwYaMyt+ZZFFB66SbDGegj1XWpKroOSzaC0zOWM6tfKCaURH9FUT:6QXgPbetn/e9DGezECzb0zO6i+HC0K

    Score
    10/10
    redlinediscoveryinfostealerspywarestealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks