General

  • Target

    0915b9e580b619dca7054b4fdc731bdb59b7617deec4159fc805bdaef4c56235

  • Size

    163KB

  • Sample

    210611-bhrdqjwhje

  • MD5

    519573909bbb994e06a39eb20c76c5bd

  • SHA1

    fddead5ad74fd94d1559121534debd700536e40d

  • SHA256

    0915b9e580b619dca7054b4fdc731bdb59b7617deec4159fc805bdaef4c56235

  • SHA512

    fc82a1065366ce8ade0611791b46d65e900d7bcf963348fa7dc479fee34d41b57447c9ee14feec54ae71a73de0da0cc57faa3a43dfa5238b022ae849db2f8269

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

43.229.206.212:443

82.209.17.209:8172

162.241.209.225:4125

rc4.plain
rc4.plain

Targets

    • Target

      0915b9e580b619dca7054b4fdc731bdb59b7617deec4159fc805bdaef4c56235

    • Size

      163KB

    • MD5

      519573909bbb994e06a39eb20c76c5bd

    • SHA1

      fddead5ad74fd94d1559121534debd700536e40d

    • SHA256

      0915b9e580b619dca7054b4fdc731bdb59b7617deec4159fc805bdaef4c56235

    • SHA512

      fc82a1065366ce8ade0611791b46d65e900d7bcf963348fa7dc479fee34d41b57447c9ee14feec54ae71a73de0da0cc57faa3a43dfa5238b022ae849db2f8269

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks