71d0c8ad4f81d91a31495b90b7c6be002285bfd73d5d012f34fcc07740960d71

General
Target

71d0c8ad4f81d91a31495b90b7c6be002285bfd73d5d012f34fcc07740960d71

Size

174KB

Sample

210611-eqtcl1k2wa

Score
10 /10
MD5

f449bbab5a1cef33b3dbb6594267ba66

SHA1

a55ab0b6668c1a19fabbe66258738cf78d7066d2

SHA256

71d0c8ad4f81d91a31495b90b7c6be002285bfd73d5d012f34fcc07740960d71

SHA512

ce19b85d390182ffaedcc83cb2a91797a3b76322f501eb9ae1fc60137eb233ce27250682296850ad0508f5fc76c322d9d8be7cb08142e70e2ff9572438161d8a

Malware Config

Extracted

Family dridex
Botnet 22201
C2

178.128.220.64:30333

45.79.91.89:9987

rc4.plain
rc4.plain
Targets
Target

71d0c8ad4f81d91a31495b90b7c6be002285bfd73d5d012f34fcc07740960d71

MD5

f449bbab5a1cef33b3dbb6594267ba66

Filesize

174KB

Score
10 /10
SHA1

a55ab0b6668c1a19fabbe66258738cf78d7066d2

SHA256

71d0c8ad4f81d91a31495b90b7c6be002285bfd73d5d012f34fcc07740960d71

SHA512

ce19b85d390182ffaedcc83cb2a91797a3b76322f501eb9ae1fc60137eb233ce27250682296850ad0508f5fc76c322d9d8be7cb08142e70e2ff9572438161d8a

Tags

Signatures

  • Dridex

    Description

    Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    Tags

  • Dridex Loader

    Description

    Detects Dridex both x86 and x64 loader in memory.

    Tags

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10