dridex | 88f8fca80756ed768ae912a11edabab404e89e13f453e238ed210cefd8d73414 | Triage

Submit
Reports

Overview

overview

Static

static

2ksbv.exe

windows7_x64

2ksbv.exe

windows10_x64

Sharing

General

Target

2ksbv.zip
Size

353KB
Sample

210120-y331pgwt4x
MD5

d5a2aed3b6c674db05d90a80d7225a0d
SHA1

fbccca87ba2dae7e442f91f2a2e8e92cc301c162
SHA256

88f8fca80756ed768ae912a11edabab404e89e13f453e238ed210cefd8d73414
SHA512

e1ca04eea3cc6e41dff7ae1969b1ebeb7bcb136533892aae685b6a117d52b6920ce7049fb176cafdb318fe4948a99507106d658e4b7e551aa658fcb3ec1d0ad3

Score

10^/10

dridex 10111 botnet loader

Static task

static1

Behavioral task

behavioral1

Sample

2ksbv.exe

Resource

win7v20201028

dridex 10111 botnet loader

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

2ksbv.exe

Resource

win10v20201028

dridex 10111 botnet loader

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

dridex

Botnet

10111

C2

162.241.44.26:9443

185.184.25.234:4664

138.201.138.91:3389

rc4.plain

rc4.plain

Targets

- Target
  
  2ksbv.exe
- Size
  
  584KB
- MD5
  
  05a8bb8105d171e5ca3fb794a750d7ea
- SHA1
  
  5732a764c88dfe5583eddb74b11fea206d43ca16
- SHA256
  
  ea33317cc510381d77eed1c56608a345c16fd6c089c3b94299576e54ae3b5e4f
- SHA512
  
  9ad79bf88c23c6682bcdb57422d0a7b66d8ce9699d4184f9effc1a19adfdbdb9628b12ba38ed3e64c8971081648ac7b157ef8cc2f966decf9451dc9921b45fd1
Score

10^/10

dridex 10111 botnet loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex10111botnetloader

behavioral2

dridex10111botnetloader

© 2018-2024

Terms | Privacy