General
-
Target
ucjk7st
-
Size
426KB
-
Sample
201126-mrd8rz1nds
-
MD5
455e8c40a659762249a13b5ef6cfb2cb
-
SHA1
818423b1fc4f4149e2bda0feb359c1605de1eb6c
-
SHA256
8ceb186696c9bda47466e5ecd1d0f0d5f93318e8bdc6b42454dd3be884e99e33
-
SHA512
7ba2b6f6c452009e74a31a0da2bc3a27e565fe12997c33cb0e8cf9397cd61ec232e2870516aa94e4f2affd2291f6b728b77775a6f8732dd5133a4df28a341123
Static task
static1
Behavioral task
behavioral1
Sample
ucjk7st.dll
Resource
win7v20201028
Malware Config
Extracted
dridex
10555
194.225.58.216:443
178.254.40.132:691
216.172.165.70:3889
198.57.200.100:3786
Targets
-
-
Target
ucjk7st
-
Size
426KB
-
MD5
455e8c40a659762249a13b5ef6cfb2cb
-
SHA1
818423b1fc4f4149e2bda0feb359c1605de1eb6c
-
SHA256
8ceb186696c9bda47466e5ecd1d0f0d5f93318e8bdc6b42454dd3be884e99e33
-
SHA512
7ba2b6f6c452009e74a31a0da2bc3a27e565fe12997c33cb0e8cf9397cd61ec232e2870516aa94e4f2affd2291f6b728b77775a6f8732dd5133a4df28a341123
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-