Overview

overview

10

Static

static

SecuriteIn...67.dll

windows7_x64

10

SecuriteIn...67.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SecuriteInfo.com.Generic.mg.3c9afffa30ce6f61.12667

  • Size

    848KB

  • Sample

    210121-wcpq3vq4pn

  • MD5

    3c9afffa30ce6f61103130c2e713036a

  • SHA1

    a139d34f8a9d4bae89248be2ebf03598e2532b1d

  • SHA256

    5f714d78dd03257b68bc16c365a1b87c5a661e889f83bed1f2c26c133702bc43

  • SHA512

    3c42fa35cbb2c0cf1de168a93f4fa1121772851e42a8135f0f4e0ce8e7f451e25c45d6a480c55936f7ebecad33d3b6b90fc69011093be887033bf905c9ac9bb1

Score
10/10
dridex10444botnetloader

Malware Config

Extracted

Family

dridex

Botnet

10444

C2

194.225.58.214:443

211.110.44.63:5353

69.164.207.140:3388

198.57.200.100:3786
rc4.plain
rc4.plain

Targets

    • Target

      SecuriteInfo.com.Generic.mg.3c9afffa30ce6f61.12667

    • Size

      848KB

    • MD5

      3c9afffa30ce6f61103130c2e713036a

    • SHA1

      a139d34f8a9d4bae89248be2ebf03598e2532b1d

    • SHA256

      5f714d78dd03257b68bc16c365a1b87c5a661e889f83bed1f2c26c133702bc43

    • SHA512

      3c42fa35cbb2c0cf1de168a93f4fa1121772851e42a8135f0f4e0ce8e7f451e25c45d6a480c55936f7ebecad33d3b6b90fc69011093be887033bf905c9ac9bb1

    Score
    10/10
    dridex10444botnetloader

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

      botnetdridex

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

      botnetloader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks