General
-
Target
e5a1785a5b06c596107a75eb1e51454b.dll
-
Size
638KB
-
Sample
201105-1da4vv5rj2
-
MD5
e5a1785a5b06c596107a75eb1e51454b
-
SHA1
3e44a3cb67613f11aae1f9189cbd9ea100d3a1f2
-
SHA256
905960957f03c7a56deaee448ac8fff59f7aad97619ee5a98eb220b9cebee849
-
SHA512
b046c5a02446652df5271b97b3785ba6d5e593cc639388f3c22e4c3ef9ecf2fab3fc08c761e9c167e8840aa12fcdfa9a978d9409e165890306a64d987e7c373f
Static task
static1
Behavioral task
behavioral1
Sample
e5a1785a5b06c596107a75eb1e51454b.dll
Resource
win7v20201028
Malware Config
Extracted
dridex
10444
193.37.215.79:443
81.2.235.131:1688
178.63.156.139:3388
Targets
-
-
Target
e5a1785a5b06c596107a75eb1e51454b.dll
-
Size
638KB
-
MD5
e5a1785a5b06c596107a75eb1e51454b
-
SHA1
3e44a3cb67613f11aae1f9189cbd9ea100d3a1f2
-
SHA256
905960957f03c7a56deaee448ac8fff59f7aad97619ee5a98eb220b9cebee849
-
SHA512
b046c5a02446652df5271b97b3785ba6d5e593cc639388f3c22e4c3ef9ecf2fab3fc08c761e9c167e8840aa12fcdfa9a978d9409e165890306a64d987e7c373f
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-