Overview

overview

10

Static

static

1

dridex

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a384fbf32223b82859993f7296459b3a71eb3ac29c083c1e42bf09d11cdd32cd

  • Size

    288KB

  • Sample

    230305-y6q5nsgg8t

  • MD5

    2596e7b6b21218d1b45b3ff8d966493f

  • SHA1

    25b894d8333597666fff1d6ce6131cf13b17c14e

  • SHA256

    a384fbf32223b82859993f7296459b3a71eb3ac29c083c1e42bf09d11cdd32cd

  • SHA512

    d7c717ebc7352198ace2fb8afabc203aa3809f66bda9271934ec617f71c736d89528b72c7c9dd0a5162c88425cea0125276fba5f413bf91fa48382de54fcb1d8

  • SSDEEP

    6144:BGXGmU6CPxtTrPXU2WdIvsGm2te+kaXGCAiM28vE:BqQ6AxBjFmoJmJNaXxAiM9E

Score
10/10
redlinediscoveryinfostealerspywarestealer

Malware Config

Targets

    • Target

      a384fbf32223b82859993f7296459b3a71eb3ac29c083c1e42bf09d11cdd32cd

    • Size

      288KB

    • MD5

      2596e7b6b21218d1b45b3ff8d966493f

    • SHA1

      25b894d8333597666fff1d6ce6131cf13b17c14e

    • SHA256

      a384fbf32223b82859993f7296459b3a71eb3ac29c083c1e42bf09d11cdd32cd

    • SHA512

      d7c717ebc7352198ace2fb8afabc203aa3809f66bda9271934ec617f71c736d89528b72c7c9dd0a5162c88425cea0125276fba5f413bf91fa48382de54fcb1d8

    • SSDEEP

      6144:BGXGmU6CPxtTrPXU2WdIvsGm2te+kaXGCAiM28vE:BqQ6AxBjFmoJmJNaXxAiM9E

    Score
    10/10
    redlinediscoveryinfostealerspywarestealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks