General
-
Target
5348aa90f4c7097ea7f53aad9ecfcd1f5847b755e535ef59f07527b273e65fe0
-
Size
196KB
-
Sample
210403-e9x3vzcw22
-
MD5
418105d402929f4ebc6fbc33cc01b052
-
SHA1
6a888162ecc8ae448782ca205e6487d11f04d2de
-
SHA256
5348aa90f4c7097ea7f53aad9ecfcd1f5847b755e535ef59f07527b273e65fe0
-
SHA512
7a2b3269ba7a2bedc6de776fa122ae8c2dc3fb89792e54a9605fe8538e564d7418a18df1dd6fe5079fabaebec97913b5f167f64ce0bab3803c2c53ccaa1fb08d
Static task
static1
Malware Config
Extracted
dridex
111
37.247.35.132:443
50.243.30.51:6601
162.241.204.234:6516
Targets
-
-
Target
5348aa90f4c7097ea7f53aad9ecfcd1f5847b755e535ef59f07527b273e65fe0
-
Size
196KB
-
MD5
418105d402929f4ebc6fbc33cc01b052
-
SHA1
6a888162ecc8ae448782ca205e6487d11f04d2de
-
SHA256
5348aa90f4c7097ea7f53aad9ecfcd1f5847b755e535ef59f07527b273e65fe0
-
SHA512
7a2b3269ba7a2bedc6de776fa122ae8c2dc3fb89792e54a9605fe8538e564d7418a18df1dd6fe5079fabaebec97913b5f167f64ce0bab3803c2c53ccaa1fb08d
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-