dridex | 6ca299c9f6d8e9203359a337f23ed72aba684db02f05dc2153a81586cf006a8b | Triage

Submit
Reports

Overview

overview

Static

static

6ca299c9f6...8b.exe

windows7_x64

6ca299c9f6...8b.exe

windows10_x64

Sharing

General

Target

6ca299c9f6d8e9203359a337f23ed72aba684db02f05dc2153a81586cf006a8b
Size

909KB
Sample

200807-ya45zlbtya
MD5

d0cf33f6ba7a095cc087f47ab85423cb
SHA1

2cb8e52c015775a59d75ae94f1f46600b7367cf6
SHA256

6ca299c9f6d8e9203359a337f23ed72aba684db02f05dc2153a81586cf006a8b
SHA512

57ae50f327d74b84c6c7b2857dcaf64cebea5ac795c388896f0fa897fec2705fb54c9cad8210a23cacea658695b0cab8758553c1ca621e197f1cab0bfd7ca178

Score

10^/10

dridex 10121 botnet loader

Static task

static1

Behavioral task

behavioral1

Sample

6ca299c9f6d8e9203359a337f23ed72aba684db02f05dc2153a81586cf006a8b.exe

Resource

win7

dridex 10121 botnet loader

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

6ca299c9f6d8e9203359a337f23ed72aba684db02f05dc2153a81586cf006a8b.exe

Resource

win10v200722

dridex 10121 botnet loader

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

dridex

Botnet

10121

C2

217.20.166.177:443

54.38.143.246:691

92.38.128.47:3389

rc4.plain

rc4.plain

Targets

- Target
  
  6ca299c9f6d8e9203359a337f23ed72aba684db02f05dc2153a81586cf006a8b
- Size
  
  909KB
- MD5
  
  d0cf33f6ba7a095cc087f47ab85423cb
- SHA1
  
  2cb8e52c015775a59d75ae94f1f46600b7367cf6
- SHA256
  
  6ca299c9f6d8e9203359a337f23ed72aba684db02f05dc2153a81586cf006a8b
- SHA512
  
  57ae50f327d74b84c6c7b2857dcaf64cebea5ac795c388896f0fa897fec2705fb54c9cad8210a23cacea658695b0cab8758553c1ca621e197f1cab0bfd7ca178
Score

10^/10

dridex 10121 botnet loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
- Dridex Loader 'dmod' strings
  Detects 'dmod' strings in Dridex loader.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex10121botnetloader

behavioral2

dridex10121botnetloader

© 2018-2024

Terms | Privacy