General
-
Target
50e355dcec2acec8f48b032ed3bc8ee2e86b05809d15521f5437abf91cc74adc
-
Size
188KB
-
Sample
210303-twna6bacfs
-
MD5
73be7951db89fc28134c0f2e084c84a7
-
SHA1
7e32153ed9037c7cc6d24ec4768b1c375d4fc793
-
SHA256
50e355dcec2acec8f48b032ed3bc8ee2e86b05809d15521f5437abf91cc74adc
-
SHA512
acce72f9c95bdb0f2dc2328c0dd39d343a3bfaaa1cbafb062d2fe2935f2db6b323ba83e96c2137f08d02877f26522682a16de99dc7ca2da4c4d3148bbb2c87f4
Static task
static1
Behavioral task
behavioral1
Sample
50e355dcec2acec8f48b032ed3bc8ee2e86b05809d15521f5437abf91cc74adc.dll
Resource
win7v20201028
Malware Config
Extracted
dridex
111
116.251.211.158:443
216.10.242.142:6601
37.247.35.137:6601
Targets
-
-
Target
50e355dcec2acec8f48b032ed3bc8ee2e86b05809d15521f5437abf91cc74adc
-
Size
188KB
-
MD5
73be7951db89fc28134c0f2e084c84a7
-
SHA1
7e32153ed9037c7cc6d24ec4768b1c375d4fc793
-
SHA256
50e355dcec2acec8f48b032ed3bc8ee2e86b05809d15521f5437abf91cc74adc
-
SHA512
acce72f9c95bdb0f2dc2328c0dd39d343a3bfaaa1cbafb062d2fe2935f2db6b323ba83e96c2137f08d02877f26522682a16de99dc7ca2da4c4d3148bbb2c87f4
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-