General
-
Target
6cd9cad16dc13c962858b01f7c70877861ffb1b89709de238d04b0e50265994c
-
Size
639KB
-
Sample
210419-plfbrxmwse
-
MD5
1aeafb870a6d24b7fa6d12d50aea462e
-
SHA1
2bd62d1a11c75d92fc9fbf6624dc7fb430a3728f
-
SHA256
6cd9cad16dc13c962858b01f7c70877861ffb1b89709de238d04b0e50265994c
-
SHA512
e71aadbde572530c53064722c4502f95ff75c80638047005219db85d714d456908ab280971c3ff1674dba655be3afcf07bff5c213d7bba2ed74a1dc624192ab4
Static task
static1
Malware Config
Extracted
dridex
10444
146.185.170.249:443
62.75.251.60:6601
185.148.168.25:2303
Targets
-
-
Target
6cd9cad16dc13c962858b01f7c70877861ffb1b89709de238d04b0e50265994c
-
Size
639KB
-
MD5
1aeafb870a6d24b7fa6d12d50aea462e
-
SHA1
2bd62d1a11c75d92fc9fbf6624dc7fb430a3728f
-
SHA256
6cd9cad16dc13c962858b01f7c70877861ffb1b89709de238d04b0e50265994c
-
SHA512
e71aadbde572530c53064722c4502f95ff75c80638047005219db85d714d456908ab280971c3ff1674dba655be3afcf07bff5c213d7bba2ed74a1dc624192ab4
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-