General
-
Target
b62c2c3d6df852d86a4cfb57c97b7b9ccc81bbc266f0a0e979cb0b51856b60de
-
Size
188KB
-
Sample
210224-9x16bvf37x
-
MD5
a0c6e2ff82b990619b986ef71604125a
-
SHA1
bd3daab1e762ecff75e10cd1501c75a4173a9539
-
SHA256
b62c2c3d6df852d86a4cfb57c97b7b9ccc81bbc266f0a0e979cb0b51856b60de
-
SHA512
fef8b1b0faeba5a3f1014be19492a056f815df83e4d9018d756d7bf6f69b75e81ead2353966aab0ae468f10cef79281ca9240cd93d7c14b85eecf60a10ed9fea
Static task
static1
Behavioral task
behavioral1
Sample
b62c2c3d6df852d86a4cfb57c97b7b9ccc81bbc266f0a0e979cb0b51856b60de.dll
Resource
win7v20201028
Malware Config
Extracted
dridex
111
209.151.236.42:443
91.121.94.86:8172
5.189.144.136:6516
Targets
-
-
Target
b62c2c3d6df852d86a4cfb57c97b7b9ccc81bbc266f0a0e979cb0b51856b60de
-
Size
188KB
-
MD5
a0c6e2ff82b990619b986ef71604125a
-
SHA1
bd3daab1e762ecff75e10cd1501c75a4173a9539
-
SHA256
b62c2c3d6df852d86a4cfb57c97b7b9ccc81bbc266f0a0e979cb0b51856b60de
-
SHA512
fef8b1b0faeba5a3f1014be19492a056f815df83e4d9018d756d7bf6f69b75e81ead2353966aab0ae468f10cef79281ca9240cd93d7c14b85eecf60a10ed9fea
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-