dridex | 82ed3c12082688828a44c5794cd896247d5f6fd865608454db2884d9c96bcedf | Triage

Submit
Reports

Overview

overview

Static

static

test

windows7_x64

Sharing

General

Target

97cdn.exe
Size

409KB
Sample

210309-v7bs7kcn7x
MD5

5e97cb68bd9eccc5bd18b1787f429da3
SHA1

b7aae2610b4e82899965bd86a5c1773a07c9538d
SHA256

82ed3c12082688828a44c5794cd896247d5f6fd865608454db2884d9c96bcedf
SHA512

cb5ac435b6d69967c524f45b26519e5484e2e3799372db358c1a6fd900615202b00d4728d8a1090bfd1ecc6a83486616376a222fdd435fd23b52a9514349a4f1

Score

10^/10

dridex 10111 DridexLoader botnet loader

Static task

static1

Behavioral task

behavioral1

Sample

97cdn.exe

Resource

win7v20201028

dridex 10111 DridexLoader botnet loader

windows7_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

dridex

Botnet

10111

C2

188.165.17.91:8443

210.65.244.186:6601

rc4.plain

rc4.plain

Targets

- Target
  
  97cdn.exe
- Size
  
  409KB
- MD5
  
  5e97cb68bd9eccc5bd18b1787f429da3
- SHA1
  
  b7aae2610b4e82899965bd86a5c1773a07c9538d
- SHA256
  
  82ed3c12082688828a44c5794cd896247d5f6fd865608454db2884d9c96bcedf
- SHA512
  
  cb5ac435b6d69967c524f45b26519e5484e2e3799372db358c1a6fd900615202b00d4728d8a1090bfd1ecc6a83486616376a222fdd435fd23b52a9514349a4f1
Score

10^/10

dridex 10111 DridexLoader botnet loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
- Dridex v4 dropper C2 parsing function
  DridexLoader
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex10111DridexLoaderbotnetloader

© 2018-2024

Terms | Privacy