Overview

overview

10

Static

static

1

dridex

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    00d1f6239770db205bd3589d414571ac31fea01c42820e44f642825c2a79ee46

  • Size

    302KB

  • Sample

    230310-vaak9sgd3z

  • MD5

    b780ff3377199c4c5323c87a1c1aa40b

  • SHA1

    fe14e0e73a1ceccf885e2b2d7fc149edca31ebba

  • SHA256

    00d1f6239770db205bd3589d414571ac31fea01c42820e44f642825c2a79ee46

  • SHA512

    630b5746860cf351871b30cb40223b6a142c5e2b80d7ee277dbb667c619962eab5ad417112df7ef9f244928644d4b3b0e5bc9e5c288c1cadec27c717b55bb8c0

  • SSDEEP

    6144:6F+EcJKyZnx9yDNOG0MbURyeqFMKB6GhWuR17z1J:07cbx9ygtyRMKMGZJ

Score
10/10
redlinediscoveryinfostealerspywarestealer

Malware Config

Targets

    • Target

      00d1f6239770db205bd3589d414571ac31fea01c42820e44f642825c2a79ee46

    • Size

      302KB

    • MD5

      b780ff3377199c4c5323c87a1c1aa40b

    • SHA1

      fe14e0e73a1ceccf885e2b2d7fc149edca31ebba

    • SHA256

      00d1f6239770db205bd3589d414571ac31fea01c42820e44f642825c2a79ee46

    • SHA512

      630b5746860cf351871b30cb40223b6a142c5e2b80d7ee277dbb667c619962eab5ad417112df7ef9f244928644d4b3b0e5bc9e5c288c1cadec27c717b55bb8c0

    • SSDEEP

      6144:6F+EcJKyZnx9yDNOG0MbURyeqFMKB6GhWuR17z1J:07cbx9ygtyRMKMGZJ

    Score
    10/10
    redlinediscoveryinfostealerspywarestealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks