General
-
Target
495295cd360148f2bd3d0606ce57c9774cf68062a1e32a6afaff4c61fed0022b
-
Size
196KB
-
Sample
210403-zdych372ta
-
MD5
75781964ef3bf602e6ce0981a932436c
-
SHA1
b96733ee54997843a50fb72815af7bf7a45839b5
-
SHA256
495295cd360148f2bd3d0606ce57c9774cf68062a1e32a6afaff4c61fed0022b
-
SHA512
58a2f0ead0f2d88ed9e805bb0f653aaf82e891f7559075291c2daa6c55ceb52fc4fba34a275ca4c104b33a1c4eed4f5d1fd2eb4d75fb3b0141e0eb5d493570a0
Static task
static1
Behavioral task
behavioral1
Sample
495295cd360148f2bd3d0606ce57c9774cf68062a1e32a6afaff4c61fed0022b.dll
Resource
win7v20201028
Malware Config
Extracted
dridex
111
37.247.35.132:443
50.243.30.51:6601
162.241.204.234:6516
Targets
-
-
Target
495295cd360148f2bd3d0606ce57c9774cf68062a1e32a6afaff4c61fed0022b
-
Size
196KB
-
MD5
75781964ef3bf602e6ce0981a932436c
-
SHA1
b96733ee54997843a50fb72815af7bf7a45839b5
-
SHA256
495295cd360148f2bd3d0606ce57c9774cf68062a1e32a6afaff4c61fed0022b
-
SHA512
58a2f0ead0f2d88ed9e805bb0f653aaf82e891f7559075291c2daa6c55ceb52fc4fba34a275ca4c104b33a1c4eed4f5d1fd2eb4d75fb3b0141e0eb5d493570a0
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-