dridex | 47138d4dae5f0766c241e0f46e557b43b2c230774584c9e17c3176bb8cdb1f96[.]bin | Triage

Sharing

General

Target

47138d4dae5f0766c241e0f46e557b43b2c230774584c9e17c3176bb8cdb1f96.bin
Size

164KB
MD5

97b55759dbaa8cff7dd388b1df7501bb
SHA1

41992692046db2ce41707421f34ce7f2e8a42bec
SHA256

47138d4dae5f0766c241e0f46e557b43b2c230774584c9e17c3176bb8cdb1f96
SHA512

fd92d49cc53fd17af1ccb98a7938421fdfafb71823da195d2a21371b6fbaaf4878dec63f21e164c27fc0b4df64595778d23336e0cd0069d2eab3a1783ad20ece

Score

10^/10

botnet loader 10121 dridex

Malware Config

Extracted

Family

dridex

Botnet

10121

C2

87.98.218.33:443

54.38.143.246:691

159.65.79.173:3886

153.122.13.133:1443

rc4.plain

rc4.plain

Signatures

Dridex Loader 1 IoCs
Detects Dridex both x86 and x64 loader in memory.
botnet loader

Processes:

resource yara_rule

sample dridex_ldr
Dridex family
dridex

Files

47138d4dae5f0766c241e0f46e557b43b2c230774584c9e17c3176bb8cdb1f96.bin
.exe windows x86