Overview

overview

10

Static

static

1

dridex

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d4440b76329dcfa21998f23bac10bbccc25a1aa4a1c4a5128f4924ea8a97873d

  • Size

    422KB

  • Sample

    230313-x9y41sbg58

  • MD5

    c98b683aa6e41aaaa236e16f7c5ad0aa

  • SHA1

    cdd633d8c2996188fb9a87ef13fcd3b11585733f

  • SHA256

    d4440b76329dcfa21998f23bac10bbccc25a1aa4a1c4a5128f4924ea8a97873d

  • SHA512

    8e4beddbc8b8abfb08efccd8912e01de5326f19f62f87c11088a80afd28818325d8c7262aac586c82a1cf43328de32437a28adb1311e18c9060bed96ee99744d

  • SSDEEP

    6144:fFFL21r5g1B0EWohXfzl+PeS9T4G5F70g+ycy4R+ADypVX:fFF619lc7lrS54GYg+/yHpV

Score
10/10
redlinediscoveryinfostealerspywarestealer

Malware Config

Targets

    • Target

      d4440b76329dcfa21998f23bac10bbccc25a1aa4a1c4a5128f4924ea8a97873d

    • Size

      422KB

    • MD5

      c98b683aa6e41aaaa236e16f7c5ad0aa

    • SHA1

      cdd633d8c2996188fb9a87ef13fcd3b11585733f

    • SHA256

      d4440b76329dcfa21998f23bac10bbccc25a1aa4a1c4a5128f4924ea8a97873d

    • SHA512

      8e4beddbc8b8abfb08efccd8912e01de5326f19f62f87c11088a80afd28818325d8c7262aac586c82a1cf43328de32437a28adb1311e18c9060bed96ee99744d

    • SSDEEP

      6144:fFFL21r5g1B0EWohXfzl+PeS9T4G5F70g+ycy4R+ADypVX:fFF619lc7lrS54GYg+/yHpV

    Score
    10/10
    redlinediscoveryinfostealerspywarestealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks