General
-
Target
3766a314a0c4804d5968042ba92743e643b0b827519f73a250e13cb3787cac03
-
Size
196KB
-
Sample
210611-kpblleedks
-
MD5
9f5070b4a596f24673055e75faf02e03
-
SHA1
ce67277351785f7b1c0fc9e3bd133f063ece0624
-
SHA256
3766a314a0c4804d5968042ba92743e643b0b827519f73a250e13cb3787cac03
-
SHA512
4d42e4bb8b96f43dc03eb07b216f5612932da2695527cd7011129bfa3ce6799aa09fbbf5ca350b4a667cedd199ef41676cef9967fa5574fb7a1b9b8c9c6ec174
Static task
static1
Malware Config
Extracted
dridex
111
37.247.35.132:443
50.243.30.51:6601
162.241.204.234:6516
Targets
-
-
Target
3766a314a0c4804d5968042ba92743e643b0b827519f73a250e13cb3787cac03
-
Size
196KB
-
MD5
9f5070b4a596f24673055e75faf02e03
-
SHA1
ce67277351785f7b1c0fc9e3bd133f063ece0624
-
SHA256
3766a314a0c4804d5968042ba92743e643b0b827519f73a250e13cb3787cac03
-
SHA512
4d42e4bb8b96f43dc03eb07b216f5612932da2695527cd7011129bfa3ce6799aa09fbbf5ca350b4a667cedd199ef41676cef9967fa5574fb7a1b9b8c9c6ec174
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-