General
-
Target
fdd5b4bd5e2e9089c9e9a77068df166cf3ad69c3e7175feed7bbb2d7704c85ab
-
Size
188KB
-
Sample
210224-3e84qfjexs
-
MD5
2da95fbee4971a2d0f486df605159e0e
-
SHA1
8f3bfe9b4daac1c382d4689bf2d0dc3f5b043dc4
-
SHA256
fdd5b4bd5e2e9089c9e9a77068df166cf3ad69c3e7175feed7bbb2d7704c85ab
-
SHA512
279d3d6e65f419d80c532de38f74865504f0beeff53457859fafa7335c9883862f9f749f57f58a8a3d3b8b4909ec3aab0d5065658f7ead231c3d6ecf6d781cc7
Static task
static1
Behavioral task
behavioral1
Sample
fdd5b4bd5e2e9089c9e9a77068df166cf3ad69c3e7175feed7bbb2d7704c85ab.dll
Resource
win7v20201028
Malware Config
Extracted
dridex
111
209.151.236.42:443
91.121.94.86:8172
5.189.144.136:6516
Targets
-
-
Target
fdd5b4bd5e2e9089c9e9a77068df166cf3ad69c3e7175feed7bbb2d7704c85ab
-
Size
188KB
-
MD5
2da95fbee4971a2d0f486df605159e0e
-
SHA1
8f3bfe9b4daac1c382d4689bf2d0dc3f5b043dc4
-
SHA256
fdd5b4bd5e2e9089c9e9a77068df166cf3ad69c3e7175feed7bbb2d7704c85ab
-
SHA512
279d3d6e65f419d80c532de38f74865504f0beeff53457859fafa7335c9883862f9f749f57f58a8a3d3b8b4909ec3aab0d5065658f7ead231c3d6ecf6d781cc7
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-