General
-
Target
ada60dcfe05fe2b8d883f498e19649b147cc7503d32a75c226f82efb0dacbbe2
-
Size
188KB
-
Sample
210225-w21ay7z4r6
-
MD5
5f112d9917735df6045d96659f84f4ca
-
SHA1
806f8dafd3a9039a0e614d6b9a45930140b3a846
-
SHA256
ada60dcfe05fe2b8d883f498e19649b147cc7503d32a75c226f82efb0dacbbe2
-
SHA512
319b746585754036071281dac746428f1ed044d02070d1970e820278d1356d6ad146423a2dd25cea9ea46788d18348fb8a7db24521ec066b328830e6c603f5f6
Static task
static1
Malware Config
Extracted
dridex
111
209.151.236.42:443
91.121.94.86:8172
5.189.144.136:6516
Targets
-
-
Target
ada60dcfe05fe2b8d883f498e19649b147cc7503d32a75c226f82efb0dacbbe2
-
Size
188KB
-
MD5
5f112d9917735df6045d96659f84f4ca
-
SHA1
806f8dafd3a9039a0e614d6b9a45930140b3a846
-
SHA256
ada60dcfe05fe2b8d883f498e19649b147cc7503d32a75c226f82efb0dacbbe2
-
SHA512
319b746585754036071281dac746428f1ed044d02070d1970e820278d1356d6ad146423a2dd25cea9ea46788d18348fb8a7db24521ec066b328830e6c603f5f6
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-