Overview

overview

10

Static

static

1

dridex

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    f4441d884b73fbca6c9719c4e6fc5fc27a2351c5462a2e35f0ae53b81e776b52

  • Size

    303KB

  • Sample

    230309-aqceksgf8z

  • MD5

    8c608c713974401b183d12c501c91e95

  • SHA1

    4e5c6927e023f6310f2e3364cd8d44527540a626

  • SHA256

    f4441d884b73fbca6c9719c4e6fc5fc27a2351c5462a2e35f0ae53b81e776b52

  • SHA512

    b8da0c57b85581ae8d6f97e5b223c4e5fa4077ad84ec9defeb7efd28c2cf1f77077dd15aed9ea152fae5aba87fd1c52145c294a3cb7e8e5712c7b0c5daa61b2b

  • SSDEEP

    6144:lohoHZ4jR4QTbjOzQpQarTNf6jm1QPCtw0:qWHZ4jXT/uBarTJePCK

Score
10/10
redlinediscoveryinfostealerspywarestealer

Malware Config

Targets

    • Target

      f4441d884b73fbca6c9719c4e6fc5fc27a2351c5462a2e35f0ae53b81e776b52

    • Size

      303KB

    • MD5

      8c608c713974401b183d12c501c91e95

    • SHA1

      4e5c6927e023f6310f2e3364cd8d44527540a626

    • SHA256

      f4441d884b73fbca6c9719c4e6fc5fc27a2351c5462a2e35f0ae53b81e776b52

    • SHA512

      b8da0c57b85581ae8d6f97e5b223c4e5fa4077ad84ec9defeb7efd28c2cf1f77077dd15aed9ea152fae5aba87fd1c52145c294a3cb7e8e5712c7b0c5daa61b2b

    • SSDEEP

      6144:lohoHZ4jR4QTbjOzQpQarTNf6jm1QPCtw0:qWHZ4jXT/uBarTJePCK

    Score
    10/10
    redlinediscoveryinfostealerspywarestealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks