General
-
Target
acf3c0921159622c9c9457f0b063af1855803780619d0a1e4b9098766ed5b49e
-
Size
196KB
-
Sample
210304-cj5zv9cd1j
-
MD5
f59d5bcf277b4a33e4461ebf03c32945
-
SHA1
66e62e7ae92f6cba50d97e9dee1243345e3931d2
-
SHA256
acf3c0921159622c9c9457f0b063af1855803780619d0a1e4b9098766ed5b49e
-
SHA512
08b1f65fb241a58f21aaaec419123d43ebcd05502226d507a9cdae3d39a870d3c2477a5b9735fe36c70a034085c1c459b997c3f9a9b7923fd7a6747b581423e0
Static task
static1
Behavioral task
behavioral1
Sample
acf3c0921159622c9c9457f0b063af1855803780619d0a1e4b9098766ed5b49e.dll
Resource
win7v20201028
Malware Config
Extracted
dridex
111
37.247.35.132:443
50.243.30.51:6601
162.241.204.234:6516
Targets
-
-
Target
acf3c0921159622c9c9457f0b063af1855803780619d0a1e4b9098766ed5b49e
-
Size
196KB
-
MD5
f59d5bcf277b4a33e4461ebf03c32945
-
SHA1
66e62e7ae92f6cba50d97e9dee1243345e3931d2
-
SHA256
acf3c0921159622c9c9457f0b063af1855803780619d0a1e4b9098766ed5b49e
-
SHA512
08b1f65fb241a58f21aaaec419123d43ebcd05502226d507a9cdae3d39a870d3c2477a5b9735fe36c70a034085c1c459b997c3f9a9b7923fd7a6747b581423e0
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-