Overview

overview

10

Static

static

1

dridex

windows10-1703-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    500b898ee7522bb8a39288e0b0e0bf1c206084c49cd6d78dfd21a8356fea91a9

  • Size

    378KB

  • Sample

    230309-k5dw3aae7w

  • MD5

    1017abe2cf579889be7bf577efcbf4cf

  • SHA1

    f4d348bb1f71facece2ceeed2fb88b4dcd12de4f

  • SHA256

    500b898ee7522bb8a39288e0b0e0bf1c206084c49cd6d78dfd21a8356fea91a9

  • SHA512

    915756738bb2fefa4afbb20c083b50607eec02de9ec8b7267f90d719fec7a0bbd5338f73b8bf5d4aef7669d5242efc783f65d482e1221486b76043e55ba30d15

  • SSDEEP

    6144:gh4EBLDAfvtb7nqiDxnf8tA6TxG9imQdVEUF:gh7BfAfvtnhf8JdGLQf

Score
10/10
redlinediscoveryinfostealerspywarestealer

Malware Config

Targets

    • Target

      500b898ee7522bb8a39288e0b0e0bf1c206084c49cd6d78dfd21a8356fea91a9

    • Size

      378KB

    • MD5

      1017abe2cf579889be7bf577efcbf4cf

    • SHA1

      f4d348bb1f71facece2ceeed2fb88b4dcd12de4f

    • SHA256

      500b898ee7522bb8a39288e0b0e0bf1c206084c49cd6d78dfd21a8356fea91a9

    • SHA512

      915756738bb2fefa4afbb20c083b50607eec02de9ec8b7267f90d719fec7a0bbd5338f73b8bf5d4aef7669d5242efc783f65d482e1221486b76043e55ba30d15

    • SSDEEP

      6144:gh4EBLDAfvtb7nqiDxnf8tA6TxG9imQdVEUF:gh7BfAfvtnhf8JdGLQf

    Score
    10/10
    redlinediscoveryinfostealerspywarestealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks