dridex | 08e5c20c4058f95ab6f34694e94766681188b21d6729961e4b7fb0e7c4d6f6cc | Triage

Sharing

General

Target

08e5c20c4058f95ab6f34694e94766681188b21d6729961e4b7fb0e7c4d6f6cc
Size

615KB
Sample

201110-q79x1zbm1n
MD5

acd2dadb83a8a13ce6457664b7c4c2a8
SHA1

4200144db92329f3a57ea1335e28073347100d3f
SHA256

08e5c20c4058f95ab6f34694e94766681188b21d6729961e4b7fb0e7c4d6f6cc
SHA512

1181912a5a1ba9c91b0c8da5dcb507beabdb479cd2b8de2b54d7a4e91202195b92b722b214cf90b96b71b606f8baf72a753bda09f9a3c5414ed9febd05181998

Score

10^/10

dridex 10121 botnet loader

Malware Config

Extracted

Family

dridex

Botnet

10121

C2

87.98.218.33:443

54.38.143.246:691

92.38.128.47:3389

159.65.79.173:3886

rc4.plain

rc4.plain

Targets

- Target
  
  08e5c20c4058f95ab6f34694e94766681188b21d6729961e4b7fb0e7c4d6f6cc
- Size
  
  615KB
- MD5
  
  acd2dadb83a8a13ce6457664b7c4c2a8
- SHA1
  
  4200144db92329f3a57ea1335e28073347100d3f
- SHA256
  
  08e5c20c4058f95ab6f34694e94766681188b21d6729961e4b7fb0e7c4d6f6cc
- SHA512
  
  1181912a5a1ba9c91b0c8da5dcb507beabdb479cd2b8de2b54d7a4e91202195b92b722b214cf90b96b71b606f8baf72a753bda09f9a3c5414ed9febd05181998
Score

10^/10

dridex 10121 botnet loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex10121botnetloader

behavioral2

dridex10121botnetloader