General
-
Target
cbbd4f026c0280fa843e1c9fe426a421ef1fa667adeccadd9ca8604e3526ca65
-
Size
196KB
-
Sample
210304-7whfsc9e6x
-
MD5
91f6e0e4ddbf7f27c924a0ce08dda37c
-
SHA1
f470262eca32d4bc9c1989f1bdf2db4912375134
-
SHA256
cbbd4f026c0280fa843e1c9fe426a421ef1fa667adeccadd9ca8604e3526ca65
-
SHA512
a0dc8a5bb52f6b48f113704ad65923993a1416b5ef5387fd1a20c4f416b88d65a182d21512b598ac7c8e2a02ac1ee6d3938f7a24eb994e2ba67c79ceeb9eaecd
Static task
static1
Behavioral task
behavioral1
Sample
cbbd4f026c0280fa843e1c9fe426a421ef1fa667adeccadd9ca8604e3526ca65.dll
Resource
win7v20201028
Malware Config
Extracted
dridex
111
37.247.35.132:443
50.243.30.51:6601
162.241.204.234:6516
Targets
-
-
Target
cbbd4f026c0280fa843e1c9fe426a421ef1fa667adeccadd9ca8604e3526ca65
-
Size
196KB
-
MD5
91f6e0e4ddbf7f27c924a0ce08dda37c
-
SHA1
f470262eca32d4bc9c1989f1bdf2db4912375134
-
SHA256
cbbd4f026c0280fa843e1c9fe426a421ef1fa667adeccadd9ca8604e3526ca65
-
SHA512
a0dc8a5bb52f6b48f113704ad65923993a1416b5ef5387fd1a20c4f416b88d65a182d21512b598ac7c8e2a02ac1ee6d3938f7a24eb994e2ba67c79ceeb9eaecd
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-