General
-
Target
2d662a20b7b4d8b936667af61a8ce94e0f5c57fd8e770ec08e631fdaa9140052
-
Size
196KB
-
Sample
210305-hhmdz5gpwn
-
MD5
718a87b6a448af03e07d25490287e883
-
SHA1
c017537f8ef62dec110a8696a6ecb7188f37283f
-
SHA256
2d662a20b7b4d8b936667af61a8ce94e0f5c57fd8e770ec08e631fdaa9140052
-
SHA512
828ff14cf8ca8109e66efe57633e94483213854362026d4be4419a18e6f678d7d82f268a2b77bc25b7162e64134e56a3ec363b11601c775c80b67970a6346168
Static task
static1
Malware Config
Extracted
dridex
111
37.247.35.132:443
50.243.30.51:6601
162.241.204.234:6516
Targets
-
-
Target
2d662a20b7b4d8b936667af61a8ce94e0f5c57fd8e770ec08e631fdaa9140052
-
Size
196KB
-
MD5
718a87b6a448af03e07d25490287e883
-
SHA1
c017537f8ef62dec110a8696a6ecb7188f37283f
-
SHA256
2d662a20b7b4d8b936667af61a8ce94e0f5c57fd8e770ec08e631fdaa9140052
-
SHA512
828ff14cf8ca8109e66efe57633e94483213854362026d4be4419a18e6f678d7d82f268a2b77bc25b7162e64134e56a3ec363b11601c775c80b67970a6346168
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-