General
-
Target
1b3b31ac5700ab49d65a7bcf7d95b9028f7c322a0fa0f2af8670cfec552cdab6
-
Size
188KB
-
Sample
210303-t322gt4pp6
-
MD5
f333d3fe94acc137e9276ef387e8e685
-
SHA1
2b7fe094e4741fb347b64b4467666528fc4d0c4d
-
SHA256
1b3b31ac5700ab49d65a7bcf7d95b9028f7c322a0fa0f2af8670cfec552cdab6
-
SHA512
210668924d392ca45d67c13f1f11e12cadb497309602908d222824a76a49d706368bd1001d975b6441e7185cc3282b1d1cf05b20056e77704b64b19bc5c5a312
Static task
static1
Behavioral task
behavioral1
Sample
1b3b31ac5700ab49d65a7bcf7d95b9028f7c322a0fa0f2af8670cfec552cdab6.dll
Resource
win7v20201028
Malware Config
Extracted
dridex
111
116.251.211.158:443
216.10.242.142:6601
37.247.35.137:6601
Targets
-
-
Target
1b3b31ac5700ab49d65a7bcf7d95b9028f7c322a0fa0f2af8670cfec552cdab6
-
Size
188KB
-
MD5
f333d3fe94acc137e9276ef387e8e685
-
SHA1
2b7fe094e4741fb347b64b4467666528fc4d0c4d
-
SHA256
1b3b31ac5700ab49d65a7bcf7d95b9028f7c322a0fa0f2af8670cfec552cdab6
-
SHA512
210668924d392ca45d67c13f1f11e12cadb497309602908d222824a76a49d706368bd1001d975b6441e7185cc3282b1d1cf05b20056e77704b64b19bc5c5a312
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-