General
-
Target
b4ff0a694c8b3bcca5558c9d8b77f4de890899dc7f1a56367d8530c97a810305
-
Size
196KB
-
Sample
210303-fqthbh2w4e
-
MD5
6980060398c6c4037d4e5806c9ee64d1
-
SHA1
01e8fe828dfa438ff35ce1a7b0cc46d7ecd8efd7
-
SHA256
b4ff0a694c8b3bcca5558c9d8b77f4de890899dc7f1a56367d8530c97a810305
-
SHA512
e734bc7dc98d4505eac2b889bed3b25519efdf6ecdd53f30e849c5189de948277d9167fd6f2f794620a876faceda3209b15e80b25f445c7933ca6fa123886f69
Static task
static1
Behavioral task
behavioral1
Sample
b4ff0a694c8b3bcca5558c9d8b77f4de890899dc7f1a56367d8530c97a810305.dll
Resource
win7v20201028
Malware Config
Extracted
dridex
111
37.247.35.132:443
50.243.30.51:6601
162.241.204.234:6516
Targets
-
-
Target
b4ff0a694c8b3bcca5558c9d8b77f4de890899dc7f1a56367d8530c97a810305
-
Size
196KB
-
MD5
6980060398c6c4037d4e5806c9ee64d1
-
SHA1
01e8fe828dfa438ff35ce1a7b0cc46d7ecd8efd7
-
SHA256
b4ff0a694c8b3bcca5558c9d8b77f4de890899dc7f1a56367d8530c97a810305
-
SHA512
e734bc7dc98d4505eac2b889bed3b25519efdf6ecdd53f30e849c5189de948277d9167fd6f2f794620a876faceda3209b15e80b25f445c7933ca6fa123886f69
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-