General
-
Target
ebcb9f52e8c756f8153a34d07778b5be01746850da6b6f08b51c7582158261cb
-
Size
923KB
-
Sample
210419-qz57etjqkx
-
MD5
8812651554b211184168917913fb1478
-
SHA1
4ce04b56da3ddc036facfd654368776cae5f6adf
-
SHA256
ebcb9f52e8c756f8153a34d07778b5be01746850da6b6f08b51c7582158261cb
-
SHA512
29c2ee18e9be213546642da11cc95ca39866dd986e525ea81d948466962695cf41dcaf94b5094b59f2f6d4386ff415bed1e801a991a19334dbdec0c914b92422
Static task
static1
Behavioral task
behavioral1
Sample
ebcb9f52e8c756f8153a34d07778b5be01746850da6b6f08b51c7582158261cb.dll
Resource
win7v20210410
Malware Config
Extracted
dridex
10444
146.185.170.249:443
62.75.251.60:6601
185.148.168.25:2303
Targets
-
-
Target
ebcb9f52e8c756f8153a34d07778b5be01746850da6b6f08b51c7582158261cb
-
Size
923KB
-
MD5
8812651554b211184168917913fb1478
-
SHA1
4ce04b56da3ddc036facfd654368776cae5f6adf
-
SHA256
ebcb9f52e8c756f8153a34d07778b5be01746850da6b6f08b51c7582158261cb
-
SHA512
29c2ee18e9be213546642da11cc95ca39866dd986e525ea81d948466962695cf41dcaf94b5094b59f2f6d4386ff415bed1e801a991a19334dbdec0c914b92422
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-