General
-
Target
b2d315587d25a170d661ad957fefde6dc96f01eef19d0b0732e48b4964e78586
-
Size
196KB
-
Sample
210403-xmb81mxwte
-
MD5
0f17bf38aa5fa2ca20bd9a2328a647b2
-
SHA1
04f5d9671a33a0c4e4e76f672b794f9faac19390
-
SHA256
b2d315587d25a170d661ad957fefde6dc96f01eef19d0b0732e48b4964e78586
-
SHA512
090b412812ade1cf79ec2a286e9faad2408b9442f7bc62fe948c3f5131b11ac7c02b68d0357b66ecb82be26677b2c42a6d222ea1e022ad0b675ed7cc3b84ce39
Static task
static1
Behavioral task
behavioral1
Sample
b2d315587d25a170d661ad957fefde6dc96f01eef19d0b0732e48b4964e78586.dll
Resource
win7v20201028
Malware Config
Extracted
dridex
111
37.247.35.132:443
50.243.30.51:6601
162.241.204.234:6516
Targets
-
-
Target
b2d315587d25a170d661ad957fefde6dc96f01eef19d0b0732e48b4964e78586
-
Size
196KB
-
MD5
0f17bf38aa5fa2ca20bd9a2328a647b2
-
SHA1
04f5d9671a33a0c4e4e76f672b794f9faac19390
-
SHA256
b2d315587d25a170d661ad957fefde6dc96f01eef19d0b0732e48b4964e78586
-
SHA512
090b412812ade1cf79ec2a286e9faad2408b9442f7bc62fe948c3f5131b11ac7c02b68d0357b66ecb82be26677b2c42a6d222ea1e022ad0b675ed7cc3b84ce39
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-