General
-
Target
486770fa5f6579da6c4e36aa99ab1888bfd6769149375a7ba7e2ab918754a190
-
Size
196KB
-
Sample
210304-bjb1c6z2l6
-
MD5
057473d1a8fbb4d0dc062d7d4f18d3a9
-
SHA1
dddd727eb39caa3622626530f2108f2aa45ccbe1
-
SHA256
486770fa5f6579da6c4e36aa99ab1888bfd6769149375a7ba7e2ab918754a190
-
SHA512
e8ecbc3ed5e53c519de33b55fd4790c9e7a606cc605c16fa04245548fc5447f5ac1c54e51839dfbfaa8f8472312e80345b9457f54f0ed8eeda87e9e60d30bed5
Static task
static1
Malware Config
Extracted
dridex
111
37.247.35.132:443
50.243.30.51:6601
162.241.204.234:6516
Targets
-
-
Target
486770fa5f6579da6c4e36aa99ab1888bfd6769149375a7ba7e2ab918754a190
-
Size
196KB
-
MD5
057473d1a8fbb4d0dc062d7d4f18d3a9
-
SHA1
dddd727eb39caa3622626530f2108f2aa45ccbe1
-
SHA256
486770fa5f6579da6c4e36aa99ab1888bfd6769149375a7ba7e2ab918754a190
-
SHA512
e8ecbc3ed5e53c519de33b55fd4790c9e7a606cc605c16fa04245548fc5447f5ac1c54e51839dfbfaa8f8472312e80345b9457f54f0ed8eeda87e9e60d30bed5
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-