dridex | 9f38af84820dc29e805029409bbb2a5765036775973e3898b6db1f66c1b47270 | Triage

Submit
Reports

Overview

overview

Static

static

Eternity

windows7_x64

Resubmissions

26-11-2020 08:55

201126-72ql95fj7a 10

26-11-2020 04:06

201126-vwbe2np51s 10

Sharing

General

Target

nsetldk.dll
Size

630KB
Sample

201126-72ql95fj7a
MD5

3ce5469a7a34b52cc10fd3f17c29b3a5
SHA1

d6b121e7a8ed0e94c2e89e33ea6828290f858e90
SHA256

9f38af84820dc29e805029409bbb2a5765036775973e3898b6db1f66c1b47270
SHA512

6e9746d0377d6a5d09ee0d8cc7cb8660443420868e6be21cb587293b4869fc45793a55a9c6d44b46fce7dcbb722535954882dd6f4f126448b1f03e56fb916bb2

Score

10^/10

dridex 10555 botnet loader

Static task

static1

Behavioral task

behavioral1

Sample

nsetldk.dll

Resource

win7v20201028

dridex 10555 botnet loader

windows7_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

dridex

Botnet

10555

C2

194.225.58.216:443

178.254.40.132:691

216.172.165.70:3889

198.57.200.100:3786

rc4.plain

rc4.plain

Targets

- Target
  
  nsetldk.dll
- Size
  
  630KB
- MD5
  
  3ce5469a7a34b52cc10fd3f17c29b3a5
- SHA1
  
  d6b121e7a8ed0e94c2e89e33ea6828290f858e90
- SHA256
  
  9f38af84820dc29e805029409bbb2a5765036775973e3898b6db1f66c1b47270
- SHA512
  
  6e9746d0377d6a5d09ee0d8cc7cb8660443420868e6be21cb587293b4869fc45793a55a9c6d44b46fce7dcbb722535954882dd6f4f126448b1f03e56fb916bb2
Score

10^/10

dridex 10555 botnet loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex10555botnetloader

© 2018-2024

Terms | Privacy