General
-
Target
6bca2e07ee9be093dec658a09e93f785f170a5b4b123cf4ff69c711c4400048d
-
Size
196KB
-
Sample
210304-mnc1qalbwe
-
MD5
20378a83be257e317adee82b4d1d456d
-
SHA1
a1f243b2d499ab014fdda2d246ea9338b63ba36e
-
SHA256
6bca2e07ee9be093dec658a09e93f785f170a5b4b123cf4ff69c711c4400048d
-
SHA512
8698b79f1b3a7a55fafd58ca00b64974d16e555c83bc755b950dc3fa94ad80b21937b4b629fbad6c819acb37a8e127173229e4475bbfff6a8fa6de7b547414c1
Malware Config
Extracted
dridex
111
37.247.35.132:443
50.243.30.51:6601
162.241.204.234:6516
Targets
-
-
Target
6bca2e07ee9be093dec658a09e93f785f170a5b4b123cf4ff69c711c4400048d
-
Size
196KB
-
MD5
20378a83be257e317adee82b4d1d456d
-
SHA1
a1f243b2d499ab014fdda2d246ea9338b63ba36e
-
SHA256
6bca2e07ee9be093dec658a09e93f785f170a5b4b123cf4ff69c711c4400048d
-
SHA512
8698b79f1b3a7a55fafd58ca00b64974d16e555c83bc755b950dc3fa94ad80b21937b4b629fbad6c819acb37a8e127173229e4475bbfff6a8fa6de7b547414c1
Score10/10-
Dridex
Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
-
Dridex Loader
Detects Dridex both x86 and x64 loader in memory.
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Checks whether UAC is enabled
-