General
-
Target
b78d57b9cf77f9b074ed8899e0091d521d3a22908a759a9d742bba3cfa1fcd7a
-
Size
188KB
-
Sample
210303-2d16anj912
-
MD5
b9b9bd31e348b153eb5d524a2d6630b3
-
SHA1
a9a3d5041699ab1f944edeeacd136440aa1406f9
-
SHA256
b78d57b9cf77f9b074ed8899e0091d521d3a22908a759a9d742bba3cfa1fcd7a
-
SHA512
0a15df83599ad3099d95b8eccf518db54114a479c92d5916da8de50010f9a6afff00a9167787818f21c074b7963df50c0b4fa504a78170d09a50eb11dc8b5fc9
Static task
static1
Behavioral task
behavioral1
Sample
b78d57b9cf77f9b074ed8899e0091d521d3a22908a759a9d742bba3cfa1fcd7a.dll
Resource
win7v20201028
Malware Config
Extracted
dridex
111
116.251.211.158:443
216.10.242.142:6601
37.247.35.137:6601
Targets
-
-
Target
b78d57b9cf77f9b074ed8899e0091d521d3a22908a759a9d742bba3cfa1fcd7a
-
Size
188KB
-
MD5
b9b9bd31e348b153eb5d524a2d6630b3
-
SHA1
a9a3d5041699ab1f944edeeacd136440aa1406f9
-
SHA256
b78d57b9cf77f9b074ed8899e0091d521d3a22908a759a9d742bba3cfa1fcd7a
-
SHA512
0a15df83599ad3099d95b8eccf518db54114a479c92d5916da8de50010f9a6afff00a9167787818f21c074b7963df50c0b4fa504a78170d09a50eb11dc8b5fc9
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-