Overview

overview

10

Static

static

1

dridex

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    8b3fdbeda2cc92e39fd679e0935f8afd85bed1bcd2a415be9087b02ea6f9f085

  • Size

    442KB

  • Sample

    230316-akqd9aad2v

  • MD5

    7fa577a7cc897a89fdf511b67378e2a4

  • SHA1

    fc3744fcd7ff2e63f60179bf2bc9744c113caca1

  • SHA256

    8b3fdbeda2cc92e39fd679e0935f8afd85bed1bcd2a415be9087b02ea6f9f085

  • SHA512

    6b68a387794e84b428eb3212d9bf91dcf9ac444c10513e66abd659898811b8dd0606ff3573394b5a1d1d00978c3975ddbbc7892926b899b5cefa81efc1cd9cfc

  • SSDEEP

    6144:v5PRsW2sGLrv+OhP2I+Eixl9zK4JIC625CF51RPiF1i1AsDTdDQyiF4:v5PyW2sGfW9I+jz2YIK5I51p1mwd8u

Score
10/10
redlinediscoveryinfostealerspywarestealer

Malware Config

Targets

    • Target

      8b3fdbeda2cc92e39fd679e0935f8afd85bed1bcd2a415be9087b02ea6f9f085

    • Size

      442KB

    • MD5

      7fa577a7cc897a89fdf511b67378e2a4

    • SHA1

      fc3744fcd7ff2e63f60179bf2bc9744c113caca1

    • SHA256

      8b3fdbeda2cc92e39fd679e0935f8afd85bed1bcd2a415be9087b02ea6f9f085

    • SHA512

      6b68a387794e84b428eb3212d9bf91dcf9ac444c10513e66abd659898811b8dd0606ff3573394b5a1d1d00978c3975ddbbc7892926b899b5cefa81efc1cd9cfc

    • SSDEEP

      6144:v5PRsW2sGLrv+OhP2I+Eixl9zK4JIC625CF51RPiF1i1AsDTdDQyiF4:v5PyW2sGfW9I+jz2YIK5I51p1mwd8u

    Score
    10/10
    redlinediscoveryinfostealerspywarestealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks