0915b9e580b619dca7054b4fdc731bdb59b7617deec4159fc805bdaef4c56235

General
Target

0915b9e580b619dca7054b4fdc731bdb59b7617deec4159fc805bdaef4c56235

Size

163KB

Sample

210611-bhrdqjwhje

Score
10 /10
MD5

519573909bbb994e06a39eb20c76c5bd

SHA1

fddead5ad74fd94d1559121534debd700536e40d

SHA256

0915b9e580b619dca7054b4fdc731bdb59b7617deec4159fc805bdaef4c56235

SHA512

fc82a1065366ce8ade0611791b46d65e900d7bcf963348fa7dc479fee34d41b57447c9ee14feec54ae71a73de0da0cc57faa3a43dfa5238b022ae849db2f8269

Malware Config

Extracted

Family dridex
Botnet 22201
C2

43.229.206.212:443

82.209.17.209:8172

162.241.209.225:4125

rc4.plain
rc4.plain
Targets
Target

0915b9e580b619dca7054b4fdc731bdb59b7617deec4159fc805bdaef4c56235

MD5

519573909bbb994e06a39eb20c76c5bd

Filesize

163KB

Score
10 /10
SHA1

fddead5ad74fd94d1559121534debd700536e40d

SHA256

0915b9e580b619dca7054b4fdc731bdb59b7617deec4159fc805bdaef4c56235

SHA512

fc82a1065366ce8ade0611791b46d65e900d7bcf963348fa7dc479fee34d41b57447c9ee14feec54ae71a73de0da0cc57faa3a43dfa5238b022ae849db2f8269

Tags

Signatures

  • Dridex

    Description

    Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    Tags

  • Dridex Loader

    Description

    Detects Dridex both x86 and x64 loader in memory.

    Tags

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10