General
-
Target
kvp6p.zip
-
Size
394KB
-
Sample
201117-3kmxgq2b76
-
MD5
bc8614871b45f31d70b5177d37e167eb
-
SHA1
01e8c2efed6597a439cec9b239bdc95f980fa194
-
SHA256
02a84d21473143dcb1e2f996044e6d42b63c93bd78416e188395bda9a6aedf41
-
SHA512
1d1a5ff5a844487718d0afe31cacc0bd40de9d80c08818413ed4fba17f18da41330c1bdd086ac5f153ef4831a5d1545ce8a7dcdd878a3e396dc68e463cfae9bd
Static task
static1
Behavioral task
behavioral1
Sample
kvp6p.exe
Resource
win7v20201028
Malware Config
Extracted
dridex
10111
194.150.118.7:443
49.212.179.180:3889
69.64.62.4:4443
Targets
-
-
Target
kvp6p.exe
-
Size
649KB
-
MD5
a1500c1f43a4a81444440aa922391300
-
SHA1
5e3643cf4b29c16dbc9632cddb20689a971533ab
-
SHA256
0098b586935058cbae3b6713d281f47c361fe87c5b9148add360cfb84cec73e0
-
SHA512
b88c66c5a5b235be30dcb1d3b977d457478e13369674e9395797b64001edf084700b2fea2a760d17f1ead24c9f9914fa1d220e850e059dee39a91c40675b51cd
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-