Analysis
-
max time kernel
13s -
max time network
71s -
platform
windows7_x64 -
resource
win7 -
submitted
07-08-2020 15:15
Static task
static1
Behavioral task
behavioral1
Sample
6ca299c9f6d8e9203359a337f23ed72aba684db02f05dc2153a81586cf006a8b.exe
Resource
win7
0 signatures
0 seconds
General
-
Target
6ca299c9f6d8e9203359a337f23ed72aba684db02f05dc2153a81586cf006a8b.exe
-
Size
909KB
-
MD5
d0cf33f6ba7a095cc087f47ab85423cb
-
SHA1
2cb8e52c015775a59d75ae94f1f46600b7367cf6
-
SHA256
6ca299c9f6d8e9203359a337f23ed72aba684db02f05dc2153a81586cf006a8b
-
SHA512
57ae50f327d74b84c6c7b2857dcaf64cebea5ac795c388896f0fa897fec2705fb54c9cad8210a23cacea658695b0cab8758553c1ca621e197f1cab0bfd7ca178
Malware Config
Extracted
Family
dridex
Botnet
10121
C2
217.20.166.177:443
54.38.143.246:691
92.38.128.47:3389
rc4.plain
rc4.plain
Signatures
-
Processes:
resource yara_rule behavioral1/memory/1456-0-0x0000000000400000-0x000000000042C000-memory.dmp dridex_ldr -
Processes:
resource yara_rule behavioral1/memory/1456-0-0x0000000000400000-0x000000000042C000-memory.dmp dridex_ldr_dmod
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/1456-0-0x0000000000400000-0x000000000042C000-memory.dmpFilesize
176KB