General
-
Target
d2c1d9950995769d4c71266a16ef5b1bbc0a6b955f5104c5350e71945aeff22c
-
Size
188KB
-
Sample
210224-xt8gsaznw6
-
MD5
3174ca91dc1db6dfddede689e040dd64
-
SHA1
337c2fcaed5e7cf4dc4215b6c81ea5fa549b7cf6
-
SHA256
d2c1d9950995769d4c71266a16ef5b1bbc0a6b955f5104c5350e71945aeff22c
-
SHA512
4a53e96c76b3d720016d7d2f8270700407c7244254d2ea5b02359626fb5623361e8ed487872f251306d9690b0c228b86dccc3356d35158ab07685af499f318f4
Static task
static1
Behavioral task
behavioral1
Sample
d2c1d9950995769d4c71266a16ef5b1bbc0a6b955f5104c5350e71945aeff22c.dll
Resource
win7v20201028
Malware Config
Extracted
dridex
111
209.151.236.42:443
91.121.94.86:8172
5.189.144.136:6516
Targets
-
-
Target
d2c1d9950995769d4c71266a16ef5b1bbc0a6b955f5104c5350e71945aeff22c
-
Size
188KB
-
MD5
3174ca91dc1db6dfddede689e040dd64
-
SHA1
337c2fcaed5e7cf4dc4215b6c81ea5fa549b7cf6
-
SHA256
d2c1d9950995769d4c71266a16ef5b1bbc0a6b955f5104c5350e71945aeff22c
-
SHA512
4a53e96c76b3d720016d7d2f8270700407c7244254d2ea5b02359626fb5623361e8ed487872f251306d9690b0c228b86dccc3356d35158ab07685af499f318f4
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-