General
-
Target
58611f276f115fcaba2d8455791446ec53101104b3c7f6078c874cbe7e5eee71
-
Size
639KB
-
Sample
210419-ftfxyjvxva
-
MD5
a506136618d61f37eac1ec715c925af2
-
SHA1
af40d0ec3247ea0b436d14e1ddd1cb0cc098252c
-
SHA256
58611f276f115fcaba2d8455791446ec53101104b3c7f6078c874cbe7e5eee71
-
SHA512
20458711b1a8b96fb62eeddc11439ddbd55a770cf33feb9f2769c18ad92def906c1121e4cb918756e0c589bcd7e8d879b850987f353a801791bf5b666fb03e9e
Static task
static1
Behavioral task
behavioral1
Sample
58611f276f115fcaba2d8455791446ec53101104b3c7f6078c874cbe7e5eee71.dll
Resource
win7v20210408
Malware Config
Extracted
dridex
10444
146.185.170.249:443
62.75.251.60:6601
185.148.168.25:2303
Targets
-
-
Target
58611f276f115fcaba2d8455791446ec53101104b3c7f6078c874cbe7e5eee71
-
Size
639KB
-
MD5
a506136618d61f37eac1ec715c925af2
-
SHA1
af40d0ec3247ea0b436d14e1ddd1cb0cc098252c
-
SHA256
58611f276f115fcaba2d8455791446ec53101104b3c7f6078c874cbe7e5eee71
-
SHA512
20458711b1a8b96fb62eeddc11439ddbd55a770cf33feb9f2769c18ad92def906c1121e4cb918756e0c589bcd7e8d879b850987f353a801791bf5b666fb03e9e
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-