Description
Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
ucjk7st
426KB
201126-mrd8rz1nds
455e8c40a659762249a13b5ef6cfb2cb
818423b1fc4f4149e2bda0feb359c1605de1eb6c
8ceb186696c9bda47466e5ecd1d0f0d5f93318e8bdc6b42454dd3be884e99e33
7ba2b6f6c452009e74a31a0da2bc3a27e565fe12997c33cb0e8cf9397cd61ec232e2870516aa94e4f2affd2291f6b728b77775a6f8732dd5133a4df28a341123
Family | dridex |
Version | 10555 |
C2 |
194.225.58.216:443 178.254.40.132:691 216.172.165.70:3889 198.57.200.100:3786 |
rc4.plain |
|
rc4.plain |
|
ucjk7st
455e8c40a659762249a13b5ef6cfb2cb
426KB
818423b1fc4f4149e2bda0feb359c1605de1eb6c
8ceb186696c9bda47466e5ecd1d0f0d5f93318e8bdc6b42454dd3be884e99e33
7ba2b6f6c452009e74a31a0da2bc3a27e565fe12997c33cb0e8cf9397cd61ec232e2870516aa94e4f2affd2291f6b728b77775a6f8732dd5133a4df28a341123
Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
Detects Dridex both x86 and x64 loader in memory.
Looks up Uninstall key entries in the registry to enumerate software on the system.