dridex | e63419700590e021c61e68cfaccfbe5be4f31aba7fdf703d323c8b14365658e5 | Triage

Submit
Reports

Overview

overview

Static

static

7d99e955a5...xe.dll

windows7_x64

7d99e955a5...xe.dll

windows10_x64

Sharing

General

Target

7d99e955a5f92c1f7809bb6a6609af70.exe
Size

425KB
Sample

210211-g22kxfx5cx
MD5

7d99e955a5f92c1f7809bb6a6609af70
SHA1

a9eae703e5b501bd0ab767782ee4cfad467b736e
SHA256

e63419700590e021c61e68cfaccfbe5be4f31aba7fdf703d323c8b14365658e5
SHA512

e935fad23dc862daf1c55677d255b142f112ac1a6102614c672dd1e75f9c64a54e7266a8a1d45cc5de9b31e85db2281200d5cdb551d0dd544e8d08dddf2641b6

Score

10^/10

dridex 10555 botnet loader

Static task

static1

Behavioral task

behavioral1

Sample

7d99e955a5f92c1f7809bb6a6609af70.exe.dll

Resource

win7v20201028

dridex 10555 botnet loader

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

7d99e955a5f92c1f7809bb6a6609af70.exe.dll

Resource

win10v20201028

dridex 10555 botnet loader

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

dridex

Botnet

10555

C2

77.220.64.132:443

212.227.53.240:5037

192.241.174.45:8172

rc4.plain

rc4.plain

Targets

- Target
  
  7d99e955a5f92c1f7809bb6a6609af70.exe
- Size
  
  425KB
- MD5
  
  7d99e955a5f92c1f7809bb6a6609af70
- SHA1
  
  a9eae703e5b501bd0ab767782ee4cfad467b736e
- SHA256
  
  e63419700590e021c61e68cfaccfbe5be4f31aba7fdf703d323c8b14365658e5
- SHA512
  
  e935fad23dc862daf1c55677d255b142f112ac1a6102614c672dd1e75f9c64a54e7266a8a1d45cc5de9b31e85db2281200d5cdb551d0dd544e8d08dddf2641b6
Score

10^/10

dridex 10555 botnet loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex10555botnetloader

behavioral2

dridex10555botnetloader

© 2018-2024

Terms | Privacy