General
-
Target
d3b2e2e305010b207712b4faaa9e8436.dll
-
Size
539KB
-
Sample
201125-f3f6k9nxmn
-
MD5
d3b2e2e305010b207712b4faaa9e8436
-
SHA1
ea15c4fb0669c3d53f5fa21d8b55110e70671bb1
-
SHA256
a43344a9dab75be89442f9c105fabedc7179d7af32cc9b5f83ae656f04761cb9
-
SHA512
bf7248eae65300b4d7bfbe333436a55491e5a9c41236f2ac61bc9bb1aaaaa54a6b6a85b4f8ee7c8a55b2fbbd59a1d6d8eb8fab864b69ec5f3d1ae1b858ef66f4
Static task
static1
Behavioral task
behavioral1
Sample
d3b2e2e305010b207712b4faaa9e8436.dll
Resource
win7v20201028
Malware Config
Extracted
dridex
10444
162.241.44.26:9443
192.232.229.53:4443
77.220.64.34:443
193.90.12.121:3098
Targets
-
-
Target
d3b2e2e305010b207712b4faaa9e8436.dll
-
Size
539KB
-
MD5
d3b2e2e305010b207712b4faaa9e8436
-
SHA1
ea15c4fb0669c3d53f5fa21d8b55110e70671bb1
-
SHA256
a43344a9dab75be89442f9c105fabedc7179d7af32cc9b5f83ae656f04761cb9
-
SHA512
bf7248eae65300b4d7bfbe333436a55491e5a9c41236f2ac61bc9bb1aaaaa54a6b6a85b4f8ee7c8a55b2fbbd59a1d6d8eb8fab864b69ec5f3d1ae1b858ef66f4
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-