General
-
Target
c9f9ba91934702015a1fb27b088dccae51256057256484663b2547fb0b19baed
-
Size
188KB
-
Sample
210224-934m1krc7a
-
MD5
e4ca0c47795ba07c618650fd3ff3da49
-
SHA1
1199a6bad6d0b7eb4c7b3742203fb2b8a6d60388
-
SHA256
c9f9ba91934702015a1fb27b088dccae51256057256484663b2547fb0b19baed
-
SHA512
005f664b1bc5480aac9d905667ba68f121ab43df3c1e06dfc517b5de6a043e99289c4751af741c8ebd34bdbc0470d0a48ef7e02ad660f099e5b932d4f7f795d8
Static task
static1
Behavioral task
behavioral1
Sample
c9f9ba91934702015a1fb27b088dccae51256057256484663b2547fb0b19baed.dll
Resource
win7v20201028
Malware Config
Extracted
dridex
111
209.151.236.42:443
91.121.94.86:8172
5.189.144.136:6516
Targets
-
-
Target
c9f9ba91934702015a1fb27b088dccae51256057256484663b2547fb0b19baed
-
Size
188KB
-
MD5
e4ca0c47795ba07c618650fd3ff3da49
-
SHA1
1199a6bad6d0b7eb4c7b3742203fb2b8a6d60388
-
SHA256
c9f9ba91934702015a1fb27b088dccae51256057256484663b2547fb0b19baed
-
SHA512
005f664b1bc5480aac9d905667ba68f121ab43df3c1e06dfc517b5de6a043e99289c4751af741c8ebd34bdbc0470d0a48ef7e02ad660f099e5b932d4f7f795d8
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-