General
-
Target
0da60a594c0043af2eca38b8bcf18c4c9339e3788fa76b5cec6eeb71cb583829
-
Size
196KB
-
Sample
210304-75yym2vf7e
-
MD5
9e4536d21ba9412b9ad0eaca930e9390
-
SHA1
f116c4c3726c82b41d2e011cff1c13da0f0c1051
-
SHA256
0da60a594c0043af2eca38b8bcf18c4c9339e3788fa76b5cec6eeb71cb583829
-
SHA512
b167dc13fecf1f9c9f43f62096bf88aaaacc235da2a0653429cdb62b24d349484917dd1a9f60052371cc008d7448f4b6f718b85d926090fc49a75d00cb35b20e
Static task
static1
Malware Config
Extracted
dridex
111
37.247.35.132:443
50.243.30.51:6601
162.241.204.234:6516
Targets
-
-
Target
0da60a594c0043af2eca38b8bcf18c4c9339e3788fa76b5cec6eeb71cb583829
-
Size
196KB
-
MD5
9e4536d21ba9412b9ad0eaca930e9390
-
SHA1
f116c4c3726c82b41d2e011cff1c13da0f0c1051
-
SHA256
0da60a594c0043af2eca38b8bcf18c4c9339e3788fa76b5cec6eeb71cb583829
-
SHA512
b167dc13fecf1f9c9f43f62096bf88aaaacc235da2a0653429cdb62b24d349484917dd1a9f60052371cc008d7448f4b6f718b85d926090fc49a75d00cb35b20e
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-