Overview

overview

10

Static

static

1

dridex

windows10-1703-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    4b9f37c26c6474ebfbaae4a5006b1ed69f5b2814826dbaf9a15c6eb0ce404796

  • Size

    292KB

  • Sample

    230312-1r5evsfe73

  • MD5

    82dd74448f1d8e62e682129994f96b4b

  • SHA1

    50c4e4993c7ab5e8e1732b09232dd89237853cf6

  • SHA256

    4b9f37c26c6474ebfbaae4a5006b1ed69f5b2814826dbaf9a15c6eb0ce404796

  • SHA512

    bb57a7ac8fe8fb101cf538ae39267aa68032904f6642b984ccc1363dc2c15ea0f3d7e3e46a4027a0230c2a2ff0e74e69b688250b58a35de5117873a83744a477

  • SSDEEP

    6144:iN1QUm52iDV5uXvy9uNoBLvvmeDJPIs+P4HWsdfzpcq:OQUGDVQXvYuG9vOebVHV11cq

Score
10/10
redlinediscoveryinfostealerspywarestealer

Malware Config

Targets

    • Target

      4b9f37c26c6474ebfbaae4a5006b1ed69f5b2814826dbaf9a15c6eb0ce404796

    • Size

      292KB

    • MD5

      82dd74448f1d8e62e682129994f96b4b

    • SHA1

      50c4e4993c7ab5e8e1732b09232dd89237853cf6

    • SHA256

      4b9f37c26c6474ebfbaae4a5006b1ed69f5b2814826dbaf9a15c6eb0ce404796

    • SHA512

      bb57a7ac8fe8fb101cf538ae39267aa68032904f6642b984ccc1363dc2c15ea0f3d7e3e46a4027a0230c2a2ff0e74e69b688250b58a35de5117873a83744a477

    • SSDEEP

      6144:iN1QUm52iDV5uXvy9uNoBLvvmeDJPIs+P4HWsdfzpcq:OQUGDVQXvYuG9vOebVHV11cq

    Score
    10/10
    redlinediscoveryinfostealerspywarestealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks