General
-
Target
94c66517b87d6e58b525f39d36de3c62932e2857ee750ad8e06cafbe721d1cc2
-
Size
188KB
-
Sample
210303-8x89mr3wb6
-
MD5
cd9e3aed8b1d7a1135ad1022b88849be
-
SHA1
c3135d094c25bd9b5b5cc376a161138b15a0c78f
-
SHA256
94c66517b87d6e58b525f39d36de3c62932e2857ee750ad8e06cafbe721d1cc2
-
SHA512
47f058a9aff4f9d7087903581ebf1262d77d490c9576f39b392a35bf724fee01716a6b2a1be445d948f83d344dcc23dfa9d581e2985592cc0cbd47c719bcc33d
Static task
static1
Behavioral task
behavioral1
Sample
94c66517b87d6e58b525f39d36de3c62932e2857ee750ad8e06cafbe721d1cc2.dll
Resource
win7v20201028
Malware Config
Extracted
dridex
111
116.251.211.158:443
216.10.242.142:6601
37.247.35.137:6601
Targets
-
-
Target
94c66517b87d6e58b525f39d36de3c62932e2857ee750ad8e06cafbe721d1cc2
-
Size
188KB
-
MD5
cd9e3aed8b1d7a1135ad1022b88849be
-
SHA1
c3135d094c25bd9b5b5cc376a161138b15a0c78f
-
SHA256
94c66517b87d6e58b525f39d36de3c62932e2857ee750ad8e06cafbe721d1cc2
-
SHA512
47f058a9aff4f9d7087903581ebf1262d77d490c9576f39b392a35bf724fee01716a6b2a1be445d948f83d344dcc23dfa9d581e2985592cc0cbd47c719bcc33d
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-