dridex | 3b053e1e60cdab38e1f00baf2593c0db7cf00ff18fdef9f3e261d7c1f7444a2e | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10_x64

Sharing

General

Target

3b053e1e60cdab38e1f00baf2593c0db7cf00ff18fdef9f3e261d7c1f7444a2e
Size

174KB
Sample

210610-3c59ds3qbe
MD5

5971c89988722e878a5db8dc5bf80b6e
SHA1

080c0adeb4817c292a5ff1ff4d079a7521b5e7a3
SHA256

3b053e1e60cdab38e1f00baf2593c0db7cf00ff18fdef9f3e261d7c1f7444a2e
SHA512

e93659753916f08865e1571bd0af4ee1832571d7bf86364c4c7a23c9f113e5981a5a5c4529db878122f2e8ffe9951b4347e341b1fb4fb0b5a7dd95f46b1d612f

Score

10^/10

dridex 22201 botnet loader

Static task

static1

Behavioral task

behavioral1

Sample

3b053e1e60cdab38e1f00baf2593c0db7cf00ff18fdef9f3e261d7c1f7444a2e.dll

Resource

win10v20210410

dridex 22201 botnet loader

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

178.128.220.64:30333

45.79.91.89:9987

rc4.plain

rc4.plain

Targets

- Target
  
  3b053e1e60cdab38e1f00baf2593c0db7cf00ff18fdef9f3e261d7c1f7444a2e
- Size
  
  174KB
- MD5
  
  5971c89988722e878a5db8dc5bf80b6e
- SHA1
  
  080c0adeb4817c292a5ff1ff4d079a7521b5e7a3
- SHA256
  
  3b053e1e60cdab38e1f00baf2593c0db7cf00ff18fdef9f3e261d7c1f7444a2e
- SHA512
  
  e93659753916f08865e1571bd0af4ee1832571d7bf86364c4c7a23c9f113e5981a5a5c4529db878122f2e8ffe9951b4347e341b1fb4fb0b5a7dd95f46b1d612f
Score

10^/10

dridex 22201 botnet loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex22201botnetloader

© 2018-2024

Terms | Privacy