Overview

overview

10

Static

static

3

dridex

windows10-1703-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    7855d1e9cd453e5b6fb7b129a111428fa34476999fe50193e334dc65405aa542

  • Size

    429KB

  • Sample

    231111-gwa72add37

  • MD5

    29b30699b114caf0dfb7854b2e9bb6bb

  • SHA1

    ac35c0978380b9d3afe680b84a3e0628cc865719

  • SHA256

    7855d1e9cd453e5b6fb7b129a111428fa34476999fe50193e334dc65405aa542

  • SHA512

    6e431ee3596996136e920331601ca4952d27cd4dfd8269c9bc51f486cda5610d1bc43f91f70ef25e30dee4eadc890315a0fd4e3941571499a43f1173b3969e91

  • SSDEEP

    6144:qz/sh+qoOgjUFccbbsdZLKTQF7D2292sjUOpA5NzVhhj3mznBfSNHBdkpOjB1lf:9h+7ssdZLCs/IFw4NHkpCB1J

Score
10/10
redlinemicrosoftinfostealerphishing

Malware Config

Targets

    • Target

      7855d1e9cd453e5b6fb7b129a111428fa34476999fe50193e334dc65405aa542

    • Size

      429KB

    • MD5

      29b30699b114caf0dfb7854b2e9bb6bb

    • SHA1

      ac35c0978380b9d3afe680b84a3e0628cc865719

    • SHA256

      7855d1e9cd453e5b6fb7b129a111428fa34476999fe50193e334dc65405aa542

    • SHA512

      6e431ee3596996136e920331601ca4952d27cd4dfd8269c9bc51f486cda5610d1bc43f91f70ef25e30dee4eadc890315a0fd4e3941571499a43f1173b3969e91

    • SSDEEP

      6144:qz/sh+qoOgjUFccbbsdZLKTQF7D2292sjUOpA5NzVhhj3mznBfSNHBdkpOjB1lf:9h+7ssdZLCs/IFw4NHkpCB1J

    Score
    10/10
    redlinemicrosoftinfostealerphishing

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Detected potential entity reuse from brand microsoft.

      phishingmicrosoft
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks